← volver
CVE-2013-2700

CVE-2013-2700

EPSS 1.2%
Cross-site request forgery (CSRF) vulnerability in the Add/Edit page (adminmenus.php) in the WP125 plugin before 1.5.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that add or edit an ad via unspecified vectors.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/92113http://secunia.com/advisories/52876https://plugins.trac.wordpress.org/changeset/692721http://wordpress.org/plugins/wp125/changelog