CVE-2012-2580 Information

Description

Cross-site scripting (XSS) vulnerability in the Postie plugin 1.4.3 and possibly before 1.5.15 for WordPress allows remote attackers to inject arbitrary web script or HTML via the From field of an email.

Reference

http://osvdb.org/84532 http://secunia.com/advisories/50207 http://www.exploit-db.com/exploits/20360 http://www.securityfocus.com/bid/54909 https://exchange.xforce.ibmcloud.com/vulnerabilities/77537