11 matches found
CVE-2016-20083
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxe...
EUVD-2016-10895
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxe...
CVE-2016-20083 WordPress More Fields Plugin 2.1 Cross-Site Request Forgery
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxe...
CVE-2016-20083 WordPress More Fields Plugin 2.1 Cross-Site Request Forgery
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxe...
CVE-2016-20083
WordPress More Fields Plugin 2.1 contains a Cross-Site Request Forgery (CSRF) vulnerability that allows an attacker to perform unauthorized actions by disabling CSRF token validation. Malicious pages can trick logged-in administrators into adding or deleting custom fields and boxes on the Write/E...
PT-2026-49221
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxe...
WordPress Plugin More Fields 2.1 - Cross-Site Request Forgery
Exploit Title: Wordpress More Fields Plugin 2.1 Cross-Site Request Forgery Date: 28-02-2016 Software Link: https://wordpress.org/support/plugin/more-fields Exploit Author: Aatif Shahdad Twitter: https://twitter.com/61617469665f736 Contact: [email protected] Category: webapps 1. Description...
WordPress More Fields 2.1 Cross Site Request Forgery
Exploit Title: Wordpress More Fields Plugin 2.1 Cross-Site Request Forgery Date: 28-02-2016 Software Link: https://wordpress.org/support/plugin/more-fields Exploit Author: Aatif Shahdad Twitter: https://twitter.com/61617469665f736 Contact: [email protected] Category: webapps 1. Description...
WordPress More Fields 2.1 Plugin - Cross-Site Request Forgery
Exploit for php platform in category web applications Exploit Title: Wordpress More Fields Plugin 2.1 Cross-Site Request Forgery Date: 28-02-2016 Software Link: https://wordpress.org/support/plugin/more-fields Exploit Author: Aatif Shahdad Twitter: https://twitter.com/61617469665f736 Contact:...
WordPress Plugin More Fields 2.1 - Cross-Site Request Forgery
WordPress Plugin More Fields 2.1 - Cross-Site Request Forgery Exploit Title: Wordpress More Fields Plugin 2.1 Cross-Site Request Forgery Date: 28-02-2016 Software Link: https://wordpress.org/support/plugin/more-fields Exploit Author: Aatif Shahdad Twitter: https://twitter.com/61617469665f736...
WordPress More Fields Plugin 2.1 - CSRF
This vulnerability is disabled for all functions add box and delete box options. Because of that, an attacker can add or delete extra fields in additional boxes on the edit page in the Admin. Solution Upgrade the plugin...