CVE-2011-10006

Summary

A vulnerability was found in GamerZ WP-PostRatings up to 1.64. It has been classified as problematic. This affects an unknown part of the file wp-postratings.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.65 is able to address this issue. The identifier of the patch is 6182a5682b12369ced0becd3b505439ce2eb8132. It is recommended to upgrade the affected component. The identifier VDB-259629 was assigned to this vulnerability.

Affected Software

VendorProductVersion RangeStatus
GamerZWP-PostRatings1.0affected
GamerZWP-PostRatings1.1affected
GamerZWP-PostRatings1.2affected
GamerZWP-PostRatings1.3affected
GamerZWP-PostRatings1.4affected
GamerZWP-PostRatings1.5affected
GamerZWP-PostRatings1.6affected
GamerZWP-PostRatings1.7affected
GamerZWP-PostRatings1.8affected
GamerZWP-PostRatings1.9affected
GamerZWP-PostRatings1.10affected
GamerZWP-PostRatings1.11affected
GamerZWP-PostRatings1.12affected
GamerZWP-PostRatings1.13affected
GamerZWP-PostRatings1.14affected
GamerZWP-PostRatings1.15affected
GamerZWP-PostRatings1.16affected
GamerZWP-PostRatings1.17affected
GamerZWP-PostRatings1.18affected
GamerZWP-PostRatings1.19affected
GamerZWP-PostRatings1.20affected
GamerZWP-PostRatings1.21affected
GamerZWP-PostRatings1.22affected
GamerZWP-PostRatings1.23affected
GamerZWP-PostRatings1.24affected
GamerZWP-PostRatings1.25affected
GamerZWP-PostRatings1.26affected
GamerZWP-PostRatings1.27affected
GamerZWP-PostRatings1.28affected
GamerZWP-PostRatings1.29affected
GamerZWP-PostRatings1.30affected
GamerZWP-PostRatings1.31affected
GamerZWP-PostRatings1.32affected
GamerZWP-PostRatings1.33affected
GamerZWP-PostRatings1.34affected
GamerZWP-PostRatings1.35affected
GamerZWP-PostRatings1.36affected
GamerZWP-PostRatings1.37affected
GamerZWP-PostRatings1.38affected
GamerZWP-PostRatings1.39affected
GamerZWP-PostRatings1.40affected
GamerZWP-PostRatings1.41affected
GamerZWP-PostRatings1.42affected
GamerZWP-PostRatings1.43affected
GamerZWP-PostRatings1.44affected
GamerZWP-PostRatings1.45affected
GamerZWP-PostRatings1.46affected
GamerZWP-PostRatings1.47affected
GamerZWP-PostRatings1.48affected
GamerZWP-PostRatings1.49affected
GamerZWP-PostRatings1.50affected
GamerZWP-PostRatings1.51affected
GamerZWP-PostRatings1.52affected
GamerZWP-PostRatings1.53affected
GamerZWP-PostRatings1.54affected
GamerZWP-PostRatings1.55affected
GamerZWP-PostRatings1.56affected
GamerZWP-PostRatings1.57affected
GamerZWP-PostRatings1.58affected
GamerZWP-PostRatings1.59affected
GamerZWP-PostRatings1.60affected
GamerZWP-PostRatings1.61affected
GamerZWP-PostRatings1.62affected
GamerZWP-PostRatings1.63affected
GamerZWP-PostRatings1.64affected

Weaknesses

  • CWE-79: CWE-79 Cross Site Scripting

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References