CVE-2012-6633 Information

Description

Cross-site scripting (XSS) vulnerability in wp-includes/default-filters.php in WordPress before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via an editable slug field.

Reference

http://codex.wordpress.org/Version_3.3.3 https://core.trac.wordpress.org/changeset/21083