Lucene search
PRIOn knowledge basePRION:CVE-2013-6797HistoryNov 19, 2013 - 4:50 a.m.
Cross site request forgery (csrf)
2013-11-1904:50:00
PRIOn knowledge base
www.prio-n.com
Cross-site request forgery (CSRF) vulnerability in bluewrench-video-widget.php in the Blue Wrench Video Widget plugin before 2.0.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that embed arbitrary URLs via the bw_url parameter in the bw-videos page to wp-admin/admin.php, as demonstrated by embedding a URL to a JavaScript file.
Related
wpvulndb
wpvulndb
Blue Wrench Video Widget 1.0.2 - Multiple Stored Cross-Site Scripting (XSS)
2014-08-01 10:59:05
cve
cve
CVE-2013-6797
2022-10-03 16:14:52
cvelist
cvelist
CVE-2013-6797
2022-10-03 16:14:52
patchstack
patchstack
WordPress Blue Wrench Video Widget Plugin - Cross Site Request Forgery
2013-11-23 00:00:00
nvd
nvd
CVE-2013-6797
2013-11-19 04:50:57