10 matches found
EUVD-2014-1152
Malware in sbrugna...
CVE-2014-10381
The user-domain-whitelist plugin before 1.5 for WordPress has CSRF...
WordPress user-domain-whitelist plugin cross-site request forgery vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. user-domain-whitelist is a plugin that adds a black/white list of users. A cross-site request forgery vulnerability exists in the...
CVE-2014-10381
The user-domain-whitelist plugin before 1.5 for WordPress has CSRF...
CVE-2014-10381
CVE-2014-10381 involves the WordPress plugin user-domain-whitelist prior to 1.5, which has a CSRF vulnerability . The issue stems from inadequate validation of requests, permitting an attacker to trigger unintended actions on a vulnerable site. The available data lists a CVSS v3 base score of 8.8...
User Domain Whitelist 1.4 - user-domain-whitelist.php Domain Whitelisting Manipulation CSRF
The User Domain Whitelist WordPress plugin was affected by a user-domain-whitelist.php Domain Whitelisting Manipulation CSRF security vulnerability...
WordPress User Domain Whitelist Plugin <= 1.4 - CSRF
This plugin is prone to a cross site request forgery vulnerability in user-domain-whitelist.php. Solution Update the plugin...
WordPress User Domain Whitelist Plugin <= 1.4 - Stored XSS
This plugin is prone to a stored XSS in user-domain-whitelist.php domainwhitelist parameter. Solution Update the plugin...
WordPress User Domain Whitelist Plugin <= 1.4 - CSRF
This plugin is prone to a cross site request forgery vulnerability in user-domain-whitelist.php. Solution Update the plugin...
WordPress User Domain Whitelist插件跨站请求伪造漏洞
WordPress是一款内容管理系统。 应用程序允许用户通过未经验证检查的HTTP请求执行某些操作,攻击者可以利用漏洞在欺骗管理员用户登录特制网页时修改插件设置。 0 WordPress User Domain Whitelist Plugin 1.x WordPress User Domain Whitelist Plugin 1.5版本以修复此漏洞,建议用户下载使用: http://wordpress.org/plugins/user-domain-whitelist/changelog/ form...