Lucene search
WPScansPATCHSTACK:F20CA574440FCE72F203B9A0EBD2F3D7HistoryAug 08, 2017 - 12:00 a.m.
WordPress Loginizer plugin <=1.3.5 - Cross-Site Request Forgery (CSRF) vulnerability
2017-08-0800:00:00
WPScans
patchstack.com
7
EPSS
0.002
Percentile
55.2%
Cross-Site Request Forgery (CSRF) vulnerability found by Jonas Lejon (WPScans) in WordPress Loginizer plugin version 1.3.5 and earlier versions. The vulnerability exists in the init.php file of the “Blacklist and Whitelist IP Wizard.”
Solution
Update the WordPress Loginizer plugin to the latest available version (at least 1.3.6).
References
Related
nvd
nvd
CVE-2017-12651
2017-08-07 17:29:00
wpvulndb
wpvulndb
Loginizer <= 1.3.5 - Cross-Site Request Forgery (CSRF)
2017-08-08 00:00:00
cvelist
cvelist
CVE-2017-12651
2017-08-07 17:00:00
cve
cve
CVE-2017-12651
2017-08-07 17:29:00
prion
prion
Cross site request forgery (csrf)
2017-08-07 17:29:00
openvas
openvas
WordPress Loginizer Plugin <= 1.3.5 Multiple Vulnerabilities
2017-08-08 00:00:00
seebug
seebug