{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-11-21T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "46957", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/46957"}, {"tags": ["x_refsource_MISC"], "url": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce"}, {"name": "wpecommerce-index-xss(71443)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71443"}, {"name": "77249", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/77249"}, {"name": "50757", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/50757"}, {"tags": ["x_refsource_MISC"], "url": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-5104", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "46957", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/46957"}, {"name": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce", "refsource": "MISC", "url": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce"}, {"name": "wpecommerce-index-xss(71443)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71443"}, {"name": "77249", "refsource": "OSVDB", "url": "http://osvdb.org/77249"}, {"name": "50757", "refsource": "BID", "url": "http://www.securityfocus.com/bid/50757"}, {"name": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/", "refsource": "MISC", "url": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:23:40.208Z"}, "title": "CVE Program Container", "references": [{"name": "46957", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/46957"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce"}, {"name": "wpecommerce-index-xss(71443)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71443"}, {"name": "77249", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/77249"}, {"name": "50757", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/50757"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-5104", "datePublished": "2012-08-23T20:00:00", "dateReserved": "2012-08-23T00:00:00", "dateUpdated": "2024-08-07T00:23:40.208Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:*:*:*:*:*:*:*:*", "matchCriteriaId": "25A3D47A-2220-41CF-9FDA-C17F74C44C8A", "versionEndIncluding": "3.8.7.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "21872F4E-097C-4248-A35C-330FAFCF7530", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.6:*:*:*:*:*:*:*", "matchCriteriaId": "CC8955F5-5224-47AA-968D-91334CD71919", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.7:*:*:*:*:*:*:*", "matchCriteriaId": "BBA5D7C5-BAA0-47F7-8843-50B7FDD3D3A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.8:*:*:*:*:*:*:*", "matchCriteriaId": "09F09161-7667-4A72-BF6B-AB28B78E7DBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.9:*:*:*:*:*:*:*", "matchCriteriaId": "E6A396FA-F0FA-458D-B52D-6DCCEC1F9910", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.10:*:*:*:*:*:*:*", "matchCriteriaId": "E8D5C6FB-A9A5-44E7-8B33-0741E66EB0CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.11:*:*:*:*:*:*:*", "matchCriteriaId": "0DBB391F-1C93-4F16-B4D7-A77008826B54", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.12:*:*:*:*:*:*:*", "matchCriteriaId": "341F2978-7C1B-4B68-9985-3651C0DF6565", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.6.13:*:*:*:*:*:*:*", "matchCriteriaId": "B9B368EA-D7FC-4C75-A6D8-7873DAD63B94", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7:*:*:*:*:*:*:*", "matchCriteriaId": "EA66D769-7522-40F3-B0D9-95DCA0F316C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7:beta2:*:*:*:*:*:*", "matchCriteriaId": "33249B5E-F7FC-4726-969E-E3EAADC87A7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7:beta3:*:*:*:*:*:*", "matchCriteriaId": "DF40C65C-F2DE-4677-B2D3-61C67B6D7885", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "8FA77DB4-7BB6-4644-89A9-F5BACF61F9EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.2:*:*:*:*:*:*:*", "matchCriteriaId": "CBF6305F-E8BA-446B-AC40-2973301F95A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.3:*:*:*:*:*:*:*", "matchCriteriaId": "85B8A513-D808-4888-8713-8BE2C0DD3870", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.4:*:*:*:*:*:*:*", "matchCriteriaId": "4DF22E42-6D19-4338-9301-3D1253B30C89", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:*:*:*:*:*:*:*", "matchCriteriaId": "335DDA3F-64A7-4D8E-84EE-3425BF80F63F", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:beta1:*:*:*:*:*:*", "matchCriteriaId": "1DBC7A40-08C2-4490-AA75-EC84C12DE705", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:beta2:*:*:*:*:*:*", "matchCriteriaId": "3D363549-27DF-4C8B-9936-485582701565", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc1:*:*:*:*:*:*", "matchCriteriaId": "586F560D-0300-4B8A-A068-54B0AE90C7BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc2:*:*:*:*:*:*", "matchCriteriaId": "766442F7-7692-4826-AF68-F41FC78E302F", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc3:*:*:*:*:*:*", "matchCriteriaId": "6AEDA54D-8D32-469D-9ACB-203200EC3E41", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5:rc4:*:*:*:*:*:*", "matchCriteriaId": "5D28F7D1-9AB0-4352-8130-C672974EB862", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "4FF13AFB-18A7-4862-B602-2D18E0850475", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.1:beta:*:*:*:*:*:*", "matchCriteriaId": "C88E541B-1811-427A-B9C5-2F0DE1F851B7", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "0C19FD82-98C0-4A71-A582-886892C160B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "B38DFA43-A628-42F6-BF2B-EE64077FB8A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:*:*:*:*:*:*:*", "matchCriteriaId": "6402F32D-D8CA-44D2-AFD4-81108EE459ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc1:*:*:*:*:*:*", "matchCriteriaId": "6C821C15-1BFF-4065-9A20-CCB981EBFA67", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc2:*:*:*:*:*:*", "matchCriteriaId": "1E26B753-055A-4AC2-9BEC-7333D2C02A9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc3:*:*:*:*:*:*", "matchCriteriaId": "6E9DA10C-71A3-4AA2-B4DA-EB16CF4C1D66", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6:rc4:*:*:*:*:*:*", "matchCriteriaId": "C7AAD127-299E-4E7B-8E83-9B936EB37F3C", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "48A67732-C79D-4822-AADB-E8F84BFB449A", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "3479A585-6E7F-4879-97BC-BD4AD2909F2B", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "CE8250A9-FD6F-4D26-B0E3-CECFE439608D", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "13B7BFC9-D24B-4893-9C8E-0616BC5F666D", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "062AB4A9-BE50-4B91-9F96-332D341ECB9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.6:*:*:*:*:*:*:*", "matchCriteriaId": "3D5B6253-2CCA-49D8-A324-4EF96A5876A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.7:*:*:*:*:*:*:*", "matchCriteriaId": "1DCC2590-818F-4397-A147-ED22F30AE3D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.6.9:*:*:*:*:*:*:*", "matchCriteriaId": "0272D256-6FD6-4809-9EEF-76F6F0DBD3C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.7:*:*:*:*:*:*:*", "matchCriteriaId": "73793E86-FBDA-4DD6-A4F4-DB6B4E55B57A", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.8:*:*:*:*:*:*:*", "matchCriteriaId": "0D1C6A3A-FA8E-4DCE-A157-7FED1A447BD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "2D497A6D-E78C-4FC0-A35B-BA50CD129B8C", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "72D82AEC-6593-4111-8303-E8DF52A5A050", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.7.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "5DB8DED7-4A19-47CC-8BC4-BCD944F555AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:*:*:*:*:*:*:*", "matchCriteriaId": "9AA2E98D-4245-461B-AA51-A92F4E7E53B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta1:*:*:*:*:*:*", "matchCriteriaId": "9E26A112-2E6F-4100-9E2C-0821B8202EDB", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta2:*:*:*:*:*:*", "matchCriteriaId": "DFC6BCFF-DE66-4F2F-A413-B82570602FE1", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:beta3:*:*:*:*:*:*", "matchCriteriaId": "464EBD1E-440A-4C7A-917E-202B4895D679", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:rc1:*:*:*:*:*:*", "matchCriteriaId": "2D05F29C-464B-43C2-B905-5CA55E79B885", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:rc2:*:*:*:*:*:*", "matchCriteriaId": "42FEB5F2-8E40-417E-A23C-EB32FB2ED68C", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:rc3:*:*:*:*:*:*", "matchCriteriaId": "C4CC11F5-B9B6-468B-A158-9E8099EA1E2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8:rc4:*:*:*:*:*:*", "matchCriteriaId": "33329BBC-5C9D-4CFC-AECF-5E2CD24DCD22", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "53A5C634-1533-4DCA-8F1B-767917A63A98", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "2747263E-32D1-42BC-9B81-4DAA116E90DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "D0C885A9-C97F-489F-B36C-80498774F5A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "2DBE9FCE-918D-44D0-888A-B61E9713113F", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "0D310385-C631-4FAE-85AF-5619BC3B9C22", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "09707F66-85B8-41D1-9A6C-EF59C5E6249B", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "6F88E6F8-939F-40EB-8A04-2F18EEE24F66", "vulnerable": true}, {"criteria": "cpe:2.3:a:getshopped:wp_e-commerce:3.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "8DF16383-4E0B-4F65-AC6C-2116E56D5072", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*", "matchCriteriaId": "A77EB0E7-7FA7-4232-97DF-7C7587D163F1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Vulnerabilidad de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en wpsc-admin/display-sales-logs.php en el plugin para Wordpress e-Commerce v3.8.7.1 y posiblemente anteriores que permite a atacantes remotos inyectar c\u00f3digo web o HTML arbitrario a trav\u00e9s del par\u00e1metro custom_text. NOTA: algunos de estos detalles son obtenidos de informaci\u00f3n de terceras partes."}], "id": "CVE-2011-5104", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2012-08-23T20:55:02.157", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/77249"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/46957"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/50757"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71443"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/77249"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://plugins.trac.wordpress.org/changeset?reponame=&new=463447%40wp-e-commerce&old=463446%40wp-e-commerce"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/46957"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://wordpress.org/extend/plugins/wp-e-commerce/changelog/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/50757"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71443"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}