WordPress One Webmaster Plugin <= 8.2.3 - CSRF

2013-03-2600:00:00

N/A

patchstack.com

0.001 Low

EPSS

Percentile

35.5%

JSON

Because of this vulnerability, the attackers can hijack the authentication of arbitrary users for requests that insert cross site scripting sequences.

Solution

           Update the plugin.

CPENameOperatorVersion
one webmasterle8.2.3

CPE	Name	Operator	Version
	one webmaster	le	8.2.3

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2696

0.001 Low

EPSS

Percentile

35.5%

JSON

Related for PATCHSTACK:15684ED2535258EF5DDFD68EF1BC356E