CVE-2014-5196 in Improved user search in backendthông tin

Tóm tắt

Bởi MITRE

Cross-site request forgery (CSRF) vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the iusib_meta_fields parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Đặt trước

12/08/2014

Tiết lộ

12/08/2014

Kiểm duyệt

được chấp nhận

mục

VDB-70600

EPSS

0.02125

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to know what is going to be exploited?

We predict KEV entries!