CVE-2012-6633
EPSS 0.39%Published: 1/21/2014Modified: 5/27/2026
Description
Cross-site scripting (XSS) vulnerability in wp-includes/default-filters.php in WordPress before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via an editable slug field.
Affected packages (1)
- Debian/wordpressfrom 0, < 3.4+dfsg-1