CVE-2014-5346 in Comment System정보

요약

\~에 의해 MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) activate or (2) deactivate the plugin via the active parameter to wp-admin/edit-comments.php, (3) import comments via an import_comments action, or (4) export comments via an export_comments action to wp-admin/index.php.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

예약하다

2014. 08. 19.

모더레이션

수락

항목

VDB-70667

익스플로잇

다운로드

EPSS

0.02670

출처

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!