2 matches found
CVE-2018-5361
The WPGlobus plugin 1.9.6 for WordPress has CSRF via wp-admin/options.php...
CVE-2018-5361
The CVE-2018-5361 entry concerns the WPGlobus WordPress plugin (version 1.9.6) and a CSRF vulnerability via wp-admin/options.php. Connected sources corroborate CSRF, with some references also noting stored XSS in this plugin family. Impact details in the documents include that an attacker could p...