CVE-2014-5199 in WordPress File Upload信息

摘要

由 MITRE

Cross-site request forgery (CSRF) vulnerability in the WordPress File Upload plugin (wp-file-upload) before 2.4.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information.

Be aware that VulDB is the high quality source for vulnerability data.

来源

Want to know what is going to be exploited?

We predict KEV entries!