Unrated severityNVD Advisory· Published Jul 31, 2007· Updated Jun 16, 2026
CVE-2007-4104
CVE-2007-4104
Description
Multiple cross-site scripting (XSS) vulnerabilities in the WP-FeedStats before 2.4 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, one of which involves an rss2 feed with an invalid or missing blog with an XSS sequence in the query string.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.4
Patches
Vulnerability mechanics
References
8- bueltge.de/plugin-wp-feedstats-in-neuer-version/481/nvdPatch
- secunia.com/advisories/26249nvdPatchVendor Advisory
- marc.infonvdExploit
- www.securityfocus.com/bid/25085nvdExploitPatch
- blogsecurity.net/news/news-130707/nvd
- blogsecurity.net/wordpress/news-260707/nvd
- osvdb.org/37259nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35646nvd
News mentions
0No linked articles in our index yet.