311 matches found
WordPress Contextual Related Posts Plugin <= 1.8.10.1 - SQL Injection
Because of this vulnerability, the attackers can execute arbitrary SQL commands via unspecified vectors. Solution Update the plugin...
CVE-2013-3477
The CVE-2013-3477 vulnerability is a CSRF flaw in the WordPress plugin Related Posts by Zemanta up to version 1.3.1/1.3.1 (and before 1.3.2), allowing remote attackers to hijack user authentication and change settings via unknown vectors. Affected component: Related Posts by Zemanta plugin; impac...
WordPress Related Posts Plugin <= 1.3.1 - CSRF
Because of this vulnerability, the attackers can hijack the authentication of unspecified users for requests that change settings via unknown vectors. Solution Update the plugin...
WordPress Related Posts Plugin <= 2.6.1 - CSRF
Because of this vulnerability, the attackers can hijack the authentication of users for requests that change settings via unspecified vectors. Solution Update the plugin...
WordPress Related Posts Plugin <= 2.7.1 - CSRF
Because of this vulnerability, the attackers can hijack the authentication of users for requests that modify settings via unspecified vectors. Solution Update the plugin...
CVE-2011-0760
Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...
CVE-2011-0760
Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...
CVE-2011-0760
CVE-2011-0760 affects the WP Related Posts WordPress plugin (version 1.0). The vulnerability is a cross-site request forgery (CSRF) in the plugin’s configuration screen, enabling remote attackers to hijack administrator sessions and inject cross-site scripting (XSS) via the parameters wp_relatedp...
WP Related Posts <= 1.0 - Multiple CSRF
The WP Related Posts WordPress plugin was affected by a Multiple CSRF security vulnerability...
WordPress Related Posts Plugin <= 1.0 - Multiple CSRF and XSS
Because of these cross site request forgery vulnerabilities in the configuration screen in wp-relatedposts.php, the attackers can hijack the authentication of administrators for requests that insert cross-site scripting sequences. Solution Update the plugin...