Lucene search
K

4 matches found

NVD
NVD
added 2014/08/12 8:55 p.m.13 views

CVE-2014-5196

Cross-site request forgery CSRF vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the...

4.3CVSS6.5AI score0.02125EPSS
Exploits1References3
Prion
Prion
added 2014/08/12 8:55 p.m.13 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the...

4.3CVSS6.7AI score0.02125EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2014/08/12 8:0 p.m.36 views

CVE-2014-5196

The CVE-2014-5196 entry details a CSRF vulnerability in the WordPress plugin Improved User Search in Backend (backend) prior to version 1.2.5. The flaw resides in the iusib_meta_fields parameter, enabling remote attackers to hijack administrator authentication by injecting XSS sequences. Affected...

4.3CVSS6.6AI score0.02125EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2014/08/12 8:0 p.m.23 views

CVE-2014-5196

Cross-site request forgery CSRF vulnerability in improved-user-search-in-backend.php in the backend in the Improved user search in backend plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that insert XSS sequences via the...

6.5AI score0.02125EPSS
Exploits1References3
Rows per page
Query Builder