Lucene search
HistoryApr 03, 2014 - 4:15 p.m.
CVE-2014-2340
cve-2014-2340
csrf
xcloner plugin
wordpress
authentication hijacking
website backup
nvd
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
85.7%
Cross-site request forgery (CSRF) vulnerability in the XCloner plugin before 3.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that create website backups via a request to wp-admin/plugins.php.
Related
prion
prion
Cross site request forgery (csrf)
2014-04-03 16:15:00
Cross site request forgery (csrf)
2014-04-25 20:55:00
packetstorm
packetstorm
WordPress XCloner 3.1.0 Cross Site Request Forgery
2014-04-02 00:00:00
cvelist
cvelist
CVE-2014-2340
2014-04-03 15:00:00
CVE-2014-2579
2014-04-25 20:00:00
securityvulns
securityvulns
patchstack
patchstack
WordPress XCloner Plugin 3.1.0 - CSRF
2014-04-04 00:00:00
htbridge
htbridge
Π‘ross-Site Request Forgery (CSRF) in XCloner Wordpress Plugin
2014-03-12 00:00:00
zdt
zdt
Wordpress XCloner Plugin 3.1.0 - CSRF Vulnerability
2014-04-04 00:00:00
exploitpack
exploitpack
WordPress Plugin XCloner 3.1.0 - Cross-Site Request Forgery
2014-04-04 00:00:00
exploitdb
exploitdb
WordPress Plugin XCloner 3.1.0 - Cross-Site Request Forgery
2014-04-04 00:00:00
wpvulndb
wpvulndb
XCloner - Backup and Restore < 3.1.1 - Multiple Actions CSRF
2014-08-01 00:00:00
cve
cve
CVE-2014-2579
2014-04-25 20:55:00
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
85.7%
Related for CVE-2014-2340