CVE-2014-5196 in Improved user search in backendИнформация

Сводка

по MITRE

Cross-site request forgery (CSRF) vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the iusib_meta_fields parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Резервировать

12.08.2014

Раскрытие

12.08.2014

Модерация

принято

Вход

VDB-70600

EPSS

0.02125

KEV

Нет

Деятельности

Очень низкий

Источники

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!