Cross-site scripting (XSS) vulnerability in index.php in the WP-FaceThumb plugin 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the pagination_wp_facethumb parameter.
History

Mon, 14 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.03206}

epss

{'score': 0.04079}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2012-08-13T20:00:00Z

Updated: 2024-09-17T00:07:05.344Z

Reserved: 2012-04-19T00:00:00Z

Link: CVE-2012-2371

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2012-08-13T20:55:04.740

Modified: 2025-04-11T00:51:21.963

Link: CVE-2012-2371

cve-icon Redhat

No data.