Lucene search
MitreCVELIST:CVE-2012-5387HistoryOct 24, 2012 - 10:00 a.m.
CVE-2012-5387
2012-10-2410:00:00
mitre
www.cve.org
2
Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin before 1.5.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that modify the developer name via the wlcms_o_developer_name parameter in a save action to wp-admin/admin.php, as demonstrated by a developer name containing XSS sequences.
References
Related
prion
prion
Cross site request forgery (csrf)
2012-10-24 17:55:00
Cross site scripting
2012-10-24 17:55:00
nvd
nvd
CVE-2012-5387
2012-10-24 17:55:02
CVE-2012-5388
2012-10-24 17:55:02
patchstack
patchstack
WordPress White Label CMS Plugin <= 1.5.0 - CSRF
2012-10-15 00:00:00
cve
cve
CVE-2012-5387
2012-10-24 17:55:02
CVE-2012-5388
2012-10-24 17:55:02
packetstorm
packetstorm
White Label CMS 1.5 Cross Site Request Forgery / Cross Site Scripting
2012-10-22 00:00:00
exploitdb
exploitdb
exploitpack
exploitpack
seebug
seebug
White Label CMS 1.5 - CSRF & Persistent XSS
2014-07-01 00:00:00
cvelist
cvelist
CVE-2012-5388
2012-10-24 10:00:00
wpvulndb
wpvulndb
White Label CMS - Cross-Site Request Forgery
2012-10-21 00:00:00
zdt
zdt
White Label CMS v 1.5 CSRF / Persistent XSS
2012-10-21 00:00:00