Vulnerabilities > Heart5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-01-25 | CVE-2011-0641 | Cross-Site Scripting vulnerability in Heart5 Statpresscn 1.9.0 Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) what1, (2) what2, (3) what3, (4) what4, and (5) what5 parameters. | 4.3 |