CVE-2015-9427

CVE-2015-9427

EPSS 1.1%

The googmonify plugin through 0.5.1 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=googmonify.php PID or AID parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/133267/https://wordpress.org/plugins/googmonify/#developers https://wpvulndb.com/vulnerabilities/8158