WordPress · Wordpress · CVE-2006-1263
**Name of the Vulnerable Software and Affected Versions**
WordPress versions prior to 2.0.2
**Description**
The issue concerns multiple unannounced cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The exact attack vectors are unknown.
**Recommendations**
For versions prior to 2.0.2, update to version 2.0.2 or later to resolve the issue.