{"id":"CVE-2005-2107","details":"Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.","modified":"2026-04-10T03:38:08.563485Z","published":"2005-07-05T04:00:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/15831"},{"type":"ADVISORY","url":"http://www.gulftech.org/?node=research&article_id=00085-06282005"},{"type":"EVIDENCE","url":"http://www.gulftech.org/?node=research&article_id=00085-06282005"},{"type":"FIX","url":"http://secunia.com/advisories/15831"},{"type":"WEB","url":"http://marc.info/?l=bugtraq&m=112006967221438&w=2"}],"schema_version":"1.7.5"}