CVE-2014-5199 in WordPress File Uploadinfo

Zusammenfassung

von MITRE

Cross-site request forgery (CSRF) vulnerability in the WordPress File Upload plugin (wp-file-upload) before 2.4.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

12.08.2014

Veröffentlichung

12.08.2014

Moderieren

akzeptiert

Eintrag

VDB-70603

CPE

bereit

EPSS

0.00970

KEV

nein

Aktivitäten

very low

Quellen

Want to know what is going to be exploited?

We predict KEV entries!