CVE-2007-6677 Information

Description

Cross-site scripting (XSS) vulnerability in Peter’s Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form.

Reference

http://osvdb.org/43444 http://websecurity.com.ua/1535/