Lucene search
PRIOn knowledge basePRION:CVE-2012-5387HistoryOct 24, 2012 - 5:55 p.m.
Cross site request forgery (csrf)
2012-10-2417:55:00
PRIOn knowledge base
www.prio-n.com
2
Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin before 1.5.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that modify the developer name via the wlcms_o_developer_name parameter in a save action to wp-admin/admin.php, as demonstrated by a developer name containing XSS sequences.
References
Related
cvelist
cvelist
CVE-2012-5387
2012-10-24 10:00:00
CVE-2012-5388
2012-10-24 10:00:00
nvd
nvd
CVE-2012-5387
2012-10-24 17:55:02
CVE-2012-5388
2012-10-24 17:55:02
cve
cve
CVE-2012-5387
2012-10-24 17:55:02
CVE-2012-5388
2012-10-24 17:55:02
patchstack
patchstack
WordPress White Label CMS Plugin <= 1.5.0 - CSRF
2012-10-15 00:00:00
packetstorm
packetstorm
White Label CMS 1.5 Cross Site Request Forgery / Cross Site Scripting
2012-10-22 00:00:00
seebug
seebug
White Label CMS 1.5 - CSRF & Persistent XSS
2014-07-01 00:00:00
exploitpack
exploitpack
wpvulndb
wpvulndb
White Label CMS - Cross-Site Request Forgery
2012-10-21 00:00:00
prion
prion
Cross site scripting
2012-10-24 17:55:00
exploitdb
exploitdb