2 matches found
CVE-2014-3845
Cross-site request forgery CSRF vulnerability in the TinyMCE Color Picker plugin before 1.2 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that change plugin settings via unknown vectors. NOTE: some of these details are obtained from third par...
CVE-2014-3845
CVE-2014-3845 affects the TinyMCE Color Picker WordPress plugin before version 1.2. The vulnerability is a Cross-site request forgery (CSRF) that allows remote attackers to hijack the authentication of unspecified users to perform requests that change plugin settings via unknown vectors. The unde...