13 Mai 2019
Vulnérabilité CVE-2019-11886 CVE Vulnerability
The WaspThemes Visual CSS Style Editor (aka yellow-pencil-visual-theme-customizer) plugin before 7.2.1 for WordPress allows yp_option_update CSRF, as demonstrated by use of yp_remote_get to obtain admin access. (CVSS:6.8) (Last Update:2019-05-13)
Vulnerability Details : The WaspThemes Visual CSS Style Editor (aka yellow-pencil-visual-theme-customizer) plugin before 7.2.1 for WordPress allows yp_option_update CSRF, as demonstrated by use of yp_remote_get to obtain admin access. Publish Date : 2019-05-13 Last Update Date : 2019-05-13 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-11886
- References For CVE-2019-11886 | |||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-11886There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |