WordPress WhyDoWork AdSense Plugin <= 1.2 - CSRF

2014-11-2600:00:00

Dylan Irzi

patchstack.com

0.002 Low

EPSS

Percentile

53.0%

Because of this vulnerability, the attackers can hijack the authentication of administrators for requests.

Solution

           Update the plugin.

CPENameOperatorVersion
whydowork adsensele1.2

CPE	Name	Operator	Version
	whydowork adsense	le	1.2

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9099

0.002 Low

EPSS

Percentile

53.0%

Related for PATCHSTACK:682A48C6304E9C0085D1F9F47F766904