Lucene search
PRIOn knowledge basePRION:CVE-2014-9454HistoryJan 02, 2015 - 8:59 p.m.
Cross site request forgery (csrf)
2015-01-0220:59:00
PRIOn knowledge base
www.prio-n.com
5
Multiple cross-site request forgery (CSRF) vulnerabilities in the Simple Sticky Footer plugin before 1.3.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) change plugin settings via unspecified vectors or conduct cross-site scripting (XSS) attacks via the (2) simple_sf_width or (3) simple_sf_style parameter in the simple-simple-sticky-footer page to wp-admin/themes.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple_sticky_footer | le | 1.3.2 |
Related
patchstack
patchstack
WordPress Simple Sticky Footer Plugin <= 1.3.2 - Multiple CSRF and XSS
2015-01-02 00:00:00
cvelist
cvelist
CVE-2014-9454
2015-01-02 20:00:00
wpvulndb
wpvulndb
Simple Sticky Footer < 1.3.3 - Multiple CSRF
2014-12-12 00:00:00
cve
cve
CVE-2014-9454
2015-01-02 20:59:14
nvd
nvd
CVE-2014-9454
2015-01-02 20:59:14