08 Jui 2015
CVE-2015-4010
Vulnerability Details : CVE-2015-4010 Cross-site request forgery (CSRF) vulnerability in the Encrypted Contact Form plugin before 1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the iframe_url parameter in an Update Page action in the conformconf page to wp-admin/options-general.php. Publish Date : 2015-06-09 Last Update Date : 2015-06-10 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-4010
- Number Of Affected Versions By Product
- References For CVE-2015-4010
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-4010There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information) |