CVE-2014-5196 in Improved user search in backendinformazioni

Riassunto

di MITRE

Cross-site request forgery (CSRF) vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the iusib_meta_fields parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Prenotare

12/08/2014

Divulgazione

12/08/2014

Moderazione

accettato

CPE

pronto

EPSS

0.02125

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!