Lucene search
+L

4 matches found

OSV
OSV
added 2017/01/15 2:59 a.m.29 views

CVE-2017-5492

Cross-site request forgery CSRF vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php...

8.8CVSS7.2AI score
Exploits0References8
OSV
OSV
added 2017/01/15 2:59 a.m.2 views

DEBIAN-CVE-2017-5492

Cross-site request forgery CSRF vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php...

8.8CVSS8.9AI score0.01862EPSS
Exploits0References1
Prion
Prion
added 2017/01/15 2:59 a.m.29 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php...

6.8CVSS9.1AI score0.01862EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2017/01/15 2:0 a.m.39 views

CVE-2017-5492

Cross-site request forgery CSRF vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php...

8.8CVSS9.1AI score0.01862EPSS
Exploits0
Rows per page
Query Builder