EUVD-2013-6793

Malware in sbrugna...

AskApache Firefox Adsense 3.0 - Unspecified CSRF

The askapache-firefox-adsense WordPress plugin was affected by an Unspecified CSRF security vulnerability...

Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin

Advisory ID: HTB23188 Product: AskApache Firefox Adsense Wordpress plugin Vendor: AskApache Vulnerable Versions: 3.0 and probably prior Tested Version: 3.0 Advisory Publication: December 5, 2013 without technical details Vendor Notification: December 5, 2013 Public Disclosure: December 26, 2013...

CVE-2013-6992

Cross-site request forgery CSRF vulnerability in askapache-firefox-adsense.php in the AskApache Firefox Adsense plugin 3.0 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the aafireadco...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in askapache-firefox-adsense.php in the AskApache Firefox Adsense plugin 3.0 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the aafireadco...

CVE-2013-6992

Cross-site request forgery CSRF vulnerability in askapache-firefox-adsense.php in the AskApache Firefox Adsense plugin 3.0 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the aafireadco...

CVE-2013-6992

The CVE-2013-6992 entry concerns the AskApache Firefox Adsense WordPress plugin (versions ≤ 3.0). The vulnerability is a CSRF in /wp-admin/options-general.php caused by insufficient validation of the HTTP request origin, allowing a remote attacker to induce an administrator’s browser to submit re...

AskApache 3.0 Cross Site Request Forgery Vulnerability

AskApache Firefox Adsense WordPress plugin version 3.0 suffers from a cross site request forgery vulnerability. Product: AskApache Firefox Adsense Wordpress plugin Vendor: AskApache Vulnerable Versions: 3.0 and probably prior Tested Version: 3.0 Advisory Publication: December 5, 2013 without...

Wordpress AskApache Firefox Adsense插件跨站请求伪造漏洞

CVE ID:CVE-2013-6992 WordPress是一款内容管理系统。 由于 "/wp-admin/options-general.php"脚本未充分验证HTTP请求源，远程攻击者可以欺骗管理员访问含有CSRF代码的恶意链接，在受影响网站的浏览器上下文中执行任意HTML和脚本代码。 0 Wordpress AskApache Firefox Adsense=3.0 官方禁用易受攻击的插件。 The exploitation example below injects JavaScript code, which uses the "alert" function to...

AskApache 3.0 Cross Site Request Forgery

Advisory ID: HTB23188 Product: AskApache Firefox Adsense Wordpress plugin Vendor: AskApache Vulnerable Versions: 3.0 and probably prior Tested Version: 3.0 Advisory Publication: December 5, 2013 without technical details Vendor Notification: December 5, 2013 Public Disclosure: December 26, 2013...

Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin

High-Tech Bridge Security Research Lab discovered vulnerability in AskApache Firefox Adsense Wordpress plugin, which can be exploited to perform Сross-Site Request Forgery CSRF attacks. 1 Сross-Site Request Forgery CSRF in AskApache Firefox Adsense Wordpress plugin: CVE-2013-6992 The vulnerabilit...