CVE-2007-5106

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2007-5106

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2007-5106.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2007-5106

Downstream

DEBIAN-CVE-2007-5106

Published

2007-09-26T22:17:00Z

Modified

2025-08-09T20:01:26Z

Summary

[none]

Details

Cross-site scripting (XSS) vulnerability in wp-register.php in WordPress 2.0 allows remote attackers to inject arbitrary web script or HTML via the user_login parameter.

References

http://blogsecurity.net/wordpress/2-vanilla-xss-on-wordpress-wp-registerphp/
http://www.securityfocus.com/bid/25769
http://securityreason.com/securityalert/3175
http://www.securityfocus.com/archive/1/480327/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/36742

CVE-2007-5106

Affected packages