WordPress Related Posts Plugin <= 1.3.1 - CSRF

2013-05-0700:00:00

Charlie Eriksen

patchstack.com

0.002 Low

EPSS

Percentile

52.7%

JSON

Because of this vulnerability, the attackers can hijack the authentication of unspecified users for requests that change settings via unknown vectors.

Solution

           Update the plugin.

CPENameOperatorVersion
related postsle1.3.1

CPE	Name	Operator	Version
	related posts	le	1.3.1

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3477

0.002 Low

EPSS

Percentile

52.7%

JSON

Related for PATCHSTACK:B8373BA79CCD1A03082DFBBC296C1871