{
  "modified": "2025-08-09T19:01:26Z",
  "published": "2005-07-05T04:00:00Z",
  "id": "CVE-2005-2107",
  "details": "Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/15831"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.gulftech.org/?node=research\u0026article_id=00085-06282005"
    },
    {
      "type": "EVIDENCE",
      "url": "http://www.gulftech.org/?node=research\u0026article_id=00085-06282005"
    },
    {
      "type": "FIX",
      "url": "http://secunia.com/advisories/15831"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=112006967221438\u0026w=2"
    }
  ]
}