XSS attacks can be used to steal login information or other sensitive information from visitors to a particular site. According to ReadWriteWeb staff hacker Tyler Gilles, this is similar to XSS vulnerability that affected Twitter users recently. He notes that WordPress’s fix is similar to Twitter’s.
Article source: http://www.readwriteweb.com/hack/2010/12/wordpress-issues-critical-upda.php
Category: Vulnerabilities/Exploits