Lucene search
MitreCVELIST:CVE-2015-1614HistoryFeb 19, 2015 - 3:00 p.m.
CVE-2015-1614
2015-02-1915:00:00
mitre
www.cve.org
Multiple cross-site request forgery (CSRF) vulnerabilities in the Image Metadata Cruncher plugin for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the (1) image_metadata_cruncher[alt] or (2) image_metadata_cruncher[caption] parameter in an update action in the image_metadata_cruncher_title page to wp-admin/options.php or (3) custom image meta tag to the image metadata cruncher page.
Related
cve
cve
CVE-2015-1614
2015-02-19 15:59:19
zdt
zdt
WordPress Image Metadata Cruncher CSRF / XSS Vulnerabilities
2015-02-18 00:00:00
packetstorm
packetstorm
WordPress Image Metadata Cruncher CSRF / XSS
2015-02-17 00:00:00
prion
prion
Cross site request forgery (csrf)
2015-02-19 15:59:00
nvd
nvd
CVE-2015-1614
2015-02-19 15:59:19
patchstack
patchstack
WordPress Image Metadata Cruncher Plugin - Multiple CSRF and XSS
2015-02-16 00:00:00
securityvulns
securityvulns
checkpoint_advisories
checkpoint_advisories
wpvulndb
wpvulndb
Image Metadata Cruncher - Multiple Cross-Site Scripting (XSS)
2015-02-22 00:00:00
kaspersky
kaspersky
KLA10491 Multiple vulnerabilities in WordPress plugins
2015-03-17 00:00:00