CVE-2012-4921 in DVS Custom Notification plugininfo

Zusammenfassung

von MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom Notification plugin 1.0.1 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) change application settings or (2) conduct cross-site scripting (XSS) attacks.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

14.09.2012

Veröffentlichung

10.04.2014

Moderieren

akzeptiert

Eintrag

VDB-66897

CPE

bereit

CWE

CWE-352 (bestätigt)

CVSS

6.8 (NVD)

EPSS

0.00164

KEV

nein

Aktivitäten

very low

Sektor

Lawfirm, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4921
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4921
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4921/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!