cleantalk
Vulnerabilities and Security Researches

Adminimize, CVE-2011-5128

CVE, Research URL

CVE-2011-5128

Home page URL

Security reports for Adminimize

Application

Adminimize

Published on
Aug 29, 2012
Research Description
Multiple cross-site scripting (XSS) vulnerabilities in the Adminimize plugin before 1.7.22 for WordPress allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) inc-options/deinstall_options.php, (2) inc-options/theme_options.php, or (3) inc-options/im_export_options.php, or the (4) post or (5) post_ID parameters to adminimize.php, different vectors than CVE-2011-4926.
Affected versions
max 1.7.22.
Status
vulnerable
Previous vulnerability researches
Adminimize (CVE-2011-4926) , Jun 07, 2024
Adminimize (CVE-2011-5128) , Jun 07, 2024
Adminimize (CVE-2026-49045) , May 29, 2026
New vulnerability
Tiktok Feed – Best TikTok feed plugin for WordPress (CVE-2026-24520) , May 29, 2026
MetaMagic SEO Plugin (CVE-2026-8942) , May 29, 2026
Content Slideshow (CVE-2026-8873) , May 29, 2026
Islamic Database (CVE-2026-8845) , May 29, 2026
Easy Prism Syntax Highlighter (CVE-2026-8875) , May 29, 2026