WordPress Plugin Vulnerabilities

adminimize 1.7.21 - 'page' Parameter Cross Site Scripting

Description

The Adminimize WordPress plugin was affected by a 'page' Parameter Cross Site Scripting security vulnerability.

Affects Plugins

Plugin icon
adminimize
Fixed in 1.7.22

References

CVE
CVE-2011-5128
CVE
CVE-2011-4926
URL
https://seclists.org/bugtraq/2011/Nov/135

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
6c5ce251-e40f-4486-8918-fc29595a633c

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-11-28 (about 6 years ago)

Other

Published
Title
Published
2024-11-08
Title
Location Click Map <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-09-23
Title
Gutenify < 1.5.8 - Unauthenticated Stored Cross-Site Scripting
Published
2025-09-05
Title
Master Paper Collapse Toggle <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-10-15
Title
Smart Online Order for Clover < 1.5.8 - Reflected Cross-Site Scripting
Published
2020-05-18
Title
Visual Composer < 27.0 - Multiple Authenticated Cross-Site Scripting Issues