Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2011-5104
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-23 Aug, 2012 | 20:55
Updated At-11 Apr, 2025 | 00:51

Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are obtained from third party information.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
CPE Matches
getshopped
getshopped
>>wp_e-commerce>>Versions up to 3.8.7.1(inclusive)
cpe:2.3:a:getshopped:wp_e-commerce:*:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.5
cpe:2.3:a:getshopped:wp_e-commerce:3.6.5:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.6
cpe:2.3:a:getshopped:wp_e-commerce:3.6.6:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.7
cpe:2.3:a:getshopped:wp_e-commerce:3.6.7:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.8
cpe:2.3:a:getshopped:wp_e-commerce:3.6.8:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.9
cpe:2.3:a:getshopped:wp_e-commerce:3.6.9:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.10
cpe:2.3:a:getshopped:wp_e-commerce:3.6.10:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.11
cpe:2.3:a:getshopped:wp_e-commerce:3.6.11:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.12
cpe:2.3:a:getshopped:wp_e-commerce:3.6.12:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.6.13
cpe:2.3:a:getshopped:wp_e-commerce:3.6.13:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7
cpe:2.3:a:getshopped:wp_e-commerce:3.7:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7
cpe:2.3:a:getshopped:wp_e-commerce:3.7:beta2:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7
cpe:2.3:a:getshopped:wp_e-commerce:3.7:beta3:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.1
cpe:2.3:a:getshopped:wp_e-commerce:3.7.1:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.2
cpe:2.3:a:getshopped:wp_e-commerce:3.7.2:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.3
cpe:2.3:a:getshopped:wp_e-commerce:3.7.3:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.4
cpe:2.3:a:getshopped:wp_e-commerce:3.7.4:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:beta1:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:beta2:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc1:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc2:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc3:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc4:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5.1
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.1:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5.1
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.1:beta:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5.2
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.2:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.5.3
cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.3:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc1:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc2:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc3:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc4:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.1
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.1:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.2
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.2:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.3
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.3:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.4
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.4:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.5
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.5:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.6
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.6:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.7
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.7:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.6.9
cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.9:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.7
cpe:2.3:a:getshopped:wp_e-commerce:3.7.7:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.8
cpe:2.3:a:getshopped:wp_e-commerce:3.7.8:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.8.1
cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.1:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.8.2
cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.2:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.7.8.3
cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.3:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.8
cpe:2.3:a:getshopped:wp_e-commerce:3.8:*:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.8
cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta1:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.8
cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta2:*:*:*:*:*:*
getshopped
getshopped
>>wp_e-commerce>>3.8
cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta3:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-79Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/77249cve@mitre.org
N/A
http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commercecve@mitre.org
Exploit
Patch
http://secunia.com/advisories/46957cve@mitre.org
Vendor Advisory
http://wordpress.org/extend/plugins/wp-e-commerce/changelog/cve@mitre.org
Vendor Advisory
http://www.securityfocus.com/bid/50757cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/71443cve@mitre.org
N/A
http://osvdb.org/77249af854a3a-2127-422b-91ae-364da2661108
N/A
http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerceaf854a3a-2127-422b-91ae-364da2661108
Exploit
Patch
http://secunia.com/advisories/46957af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://wordpress.org/extend/plugins/wp-e-commerce/changelog/af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.securityfocus.com/bid/50757af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/71443af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found