18 Fév 2015
CVE-2015-1614
Vulnerability Details : CVE-2015-1614 Multiple cross-site request forgery (CSRF) vulnerabilities in the Image Metadata Cruncher plugin for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the (1) image_metadata_cruncher[alt] or (2) image_metadata_cruncher[caption] parameter in an update action in the image_metadata_cruncher_title page to wp-admin/options.php or (3) custom image meta tag to the image metadata cruncher page. Publish Date : 2015-02-19 Last Update Date : 2015-02-20 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-1614
- Number Of Affected Versions By Product
- References For CVE-2015-1614
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-1614There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information) |