5 matches found
EUVD-2014-9217
Malware in sbrugna...
SimpleFlickr 3.0.3 - CSRF & XSS
The simpleflickr WordPress plugin was affected by a CSRF & XSS security vulnerability...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the SimpleFlickr plugin 3.0.3 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the 1 simpleflickrwidth, 2 simpleflickrbgcolor, ...
CVE-2014-9396
The CVE-2014-9396 entry concerns WordPress SimpleFlickr plugin versions up to 3.0.3 (and earlier). The vulnerability is a CSRF that can hijack administrator authentication to perform requests that trigger cross‑site scripting via three parameters in simpleFlickr.php (simpleflickr_width, simplefli...
CVE-2014-9396
Multiple cross-site request forgery CSRF vulnerabilities in the SimpleFlickr plugin 3.0.3 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the 1 simpleflickrwidth, 2 simpleflickrbgcolor, ...