CVE-2006-1263
EPSS 0.34%
Description
Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress before 2.0.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
How to fix CVE-2006-1263
To remediate CVE-2006-1263, upgrade the affected package to a fixed version below.
- Debian/wordpress—upgrade to 2.0.2-1 or later
Is CVE-2006-1263 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.0.2-1