• info
• discussion
• exploit
• solution
• references

WordPress wp-register.php Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting user to view an a email containing a malicious auto-submission form.

The following proof of concept is available:

• /data/vulnerabilities/exploits/25769.html