CVE-2014-5196 in Improved user search in backendinfo

Zusammenfassung

von MITRE

Cross-site request forgery (CSRF) vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the iusib_meta_fields parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

12.08.2014

Veröffentlichung

12.08.2014

Moderieren

akzeptiert

Eintrag

VDB-70600

CPE

bereit

EPSS

0.02125

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!