105 matches found
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the Contextual Related Posts plugin before 1.8.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via unspecified vectors...
CVE-2013-3257
Cross-site request forgery CSRF vulnerability in the Related Posts plugin before 2.7.2 for WordPress allows remote attackers to hijack the authentication of users for requests that modify settings via unspecified vectors...
CVE-2013-3476
The CVE concerns the WordPress Related Posts plugin (prior to version 2.6.2) for WordPress, where a Cross-Site Request Forgery (CSRF) vulnerability could allow remote attackers to hijack user authentication and perform settings changes via unspecified vectors. The underlying issue is a CSRF flaw ...
CVE-2013-3257
Summary of CVE-2013-3257 (WordPress Related Posts plugin): The Related Posts plugin for WordPress is affected by a CSRF vulnerability in versions before 2.7.2 that allows remote attackers to hijack the authentication of users and perform settings-modification actions via unspecified vectors. The ...
CVE-2011-0760
CVE-2011-0760 affects the WP Related Posts WordPress plugin (version 1.0). The vulnerability is a cross-site request forgery (CSRF) in the plugin’s configuration screen, enabling remote attackers to hijack administrator sessions and inject cross-site scripting (XSS) via the parameters wp_relatedp...