4 matches found
WordPress Xhanch - My Twitter插件跨站请求伪造漏洞(CVE-2013-3253)
Bugtraq ID:61629 CVE ID:CVE-2013-3253 WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志 WordPress Xhanch - My Twitter插件存在一个跨站请求伪造漏洞,允许远程攻击者构建恶意URI,诱使用户解析,可以目标用户上下文执行恶意操作 0 WordPress Xhanch - My Twitter Plugin 2.7.5 厂商解决方案 WordPress Xhanch - My Twitter Plugin 2.7.7已经修复此漏洞,建议用户下载更新:...
CVE-2013-3253
Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...
CVE-2013-3253
Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...
CVE-2013-3253
CVE-2013-3253 documents a Cross-Site Request Forgery (CSRF) in the WordPress plugin Xhanch – My Twitter, specifically in admin/setting.php. Affected plugin versions are prior to 2.7.7, enabling remote attackers to hijack the administrator’s authentication to perform actions that change unspecifie...