Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackEric FlokstraPATCHSTACK:ADE3424E9A01E70D51E1F8D8391B4F46
HistoryFeb 23, 2015 - 12:00 a.m.

WordPress Easy Social Icons Plugin 1.2.2 - CSRF

2015-02-2300:00:00
Eric Flokstra
patchstack.com
6

0.006 Low

EPSS

Percentile

77.7%

JSON

Easy Social Icons plugin is prone to a cross-site request forgery vulnerability because of insufficient validation is performed on the “image_file” parameter which allows arbitrary JavaScript.

Solution

           Upgrade the plugin.
CPENameOperatorVersion
easy social iconsle1.2.2

Related

prion 1
wpvulndb 1
cvelist 1
nvd 1
cve 1
kaspersky 1
prion
prion
Cross site request forgery (csrf)
2015-02-25 22:59:00
wpvulndb
wpvulndb
Easy Social Icons <= 1.2.2 - Stored XSS & CSRF
2015-02-19 00:00:00
cvelist
cvelist
CVE-2015-2084
2015-02-25 22:00:00
nvd
nvd
CVE-2015-2084
2015-02-25 22:59:04
cve
cve
CVE-2015-2084
2015-02-25 22:59:04
kaspersky
kaspersky
KLA10491 Multiple vulnerabilities in WordPress plugins
2015-03-17 00:00:00

0.006 Low

EPSS

Percentile

77.7%

JSON
Related for PATCHSTACK:ADE3424E9A01E70D51E1F8D8391B4F46
prion1wpvulndb1cvelist1nvd1cve1kaspersky1