CVE-2013-2696 in All-in-on-webmaster
摘要
由 VulDB • 2026-06-03
WordPress插件All in One Webmaster在版本8.2.4之前存在跨站请求伪造(CSRF)漏洞,远程攻击者可利用该漏洞劫持任意用户的身份验证,以发起包含XSS序列的请求。
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.