Lucene search
HistoryApr 11, 2014 - 2:55 p.m.
CVE-2013-2708
cve-2013-2708
cross-site request forgery
csrf
content slide plugin
wordpress
remote attackers
authentication hijacking
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
40.5%
Cross-site request forgery (CSRF) vulnerability in the Content Slide plugin 1.4.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| snilesh:content_slide | snilesh content slide | eq | 1.4.2 |
Related
seebug
seebug
WordPress Content Slideζδ»Άθ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2013-06-11 00:00:00
wpvulndb
wpvulndb
Content Slide <= 1.4.2 - Cross Site Request Forgery
2014-08-01 10:58:35
prion
prion
Cross site request forgery (csrf)
2014-04-11 14:55:00
patchstack
patchstack
WordPress Lazy Content Slide Plugin <= 1.4.2 - CSRF
2013-03-26 00:00:00
cvelist
cvelist
CVE-2013-2708
2014-04-11 14:00:00
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
40.5%
Related for CVE-2013-2708