2 matches found
CVE-2014-4030
CVE-2014-4030 affects the JW Player plugin for WordPress (pre-2.1.4). The flaw is a CSRF that enables remote attackers to hijack an administrator’s session to remove players via a delete action to wp-admin/admin.php. Impact is partial confidentiality/integrity/availability via admin actions; expl...
CVE-2014-4030
creationtimestamp| type| source ---|---|--- 2014-06-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39212...