Unrated severityNVD Advisory· Published Sep 28, 2011· Updated Jun 16, 2026
CVE-2011-3862
CVE-2011-3862
Description
Cross-site scripting (XSS) vulnerability in the Morning Coffee theme before 3.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:adazing:morning_coffee:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:adazing:morning_coffee:*:*:*:*:*:*:*:*range: <=3.5
- cpe:2.3:a:adazing:morning_coffee:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:2.9:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:adazing:morning_coffee:3.4:*:*:*:*:*:*:*
- Range: <3.6
Patches
Vulnerability mechanics
References
2- sitewat.ch/en/Advisories/20nvdURL Repurposed
- secunia.com/advisories/46295nvd
News mentions
0No linked articles in our index yet.