Lucene search
HistoryMay 27, 2014 - 3:00 p.m.
CVE-2013-3477
cve-2013-3477
csrf
related posts
zemanta
wordpress
vulnerability
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.7%
Cross-site request forgery (CSRF) vulnerability in the Related Posts by Zemanta plugin before 1.3.2 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that change settings via unknown vectors.
Affected configurations
Node
zemantarelated_postsRange≤1.3.1wordpress
ORzemantarelated_postsMatch1.0wordpress
ORzemantarelated_postsMatch1.1wordpress
ORzemantarelated_postsMatch1.2wordpress
ORzemantarelated_postsMatch1.3wordpress
Related
prion
prion
Cross site request forgery (csrf)
2014-05-27 14:55:00
nvd
nvd
CVE-2013-3477
2014-05-27 14:55:10
wpvulndb
wpvulndb
Related Posts by Zemanta 1.3.1 - Cross-Site Request Forgery
2014-08-01 10:59:00
patchstack
patchstack
WordPress Related Posts Plugin <= 1.3.1 - CSRF
2013-05-07 00:00:00
cvelist
cvelist
CVE-2013-3477
2014-05-27 15:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.7%
Related for CVE-2013-3477