4 matches found
CVE-2014-9334
CVE-2014-9334 concerns the Bird Feeder WordPress plugin (version 1.2.3), which is affected by multiple CSRF and XSS vulnerabilities. The issue allows an attacker to hijack an administrator’s session by crafting requests to wp-admin/options-general.php via the bird-feeder page, abusing parameters ...
Bird Feeder v1.2.3 WP Plugin - CSRF & XSS Vulnerability
Document Title: =============== Bird Feeder v1.2.3 WP Plugin - CSRF & XSS Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1372 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9334 CVE-ID: ======= CVE-2014-9334 Release Date:...
WordPress Bird Feeder 1.2.3 CSRF / XSS
Document Title: =============== Bird Feeder v1.2.3 WP Plugin - CSRF & XSS Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1372 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9334 CVE-ID: ======= CVE-2014-9334 Release Date:...
WordPress Bird Feeder Plugin <= 1.2.3 - Multiple CSRF and XSS
Because of these cross site request forgery vulnerabilities, the attackers can hijack the authentication of administrators for requests. In that way they can change plugin settings via unspecified vectors or conduct cross-site scripting attacks. Solution This plugin is closed...