6 matches found
EUVD-2014-2707
Malware in sbrugna...
CVE-2014-2675
Cross-site request forgery CSRF vulnerability in inc/AdminPage.php in the WP HTML Sitemap plugin 1.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that delete the sitemap via a request to the wp-html-sitemap page in wp-admin/options-general.php...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in inc/AdminPage.php in the WP HTML Sitemap plugin 1.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that delete the sitemap via a request to the wp-html-sitemap page in wp-admin/options-general.php...
CVE-2014-2675
Cross-site request forgery CSRF vulnerability in inc/AdminPage.php in the WP HTML Sitemap plugin 1.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that delete the sitemap via a request to the wp-html-sitemap page in wp-admin/options-general.php...
CVE-2014-2675
CVE-2014-2675 concerns the WordPress WP HTML Sitemap plugin (version 1.2) and its file inc/AdminPage.php. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows an attacker to hijack the administrator’s authentication to perform a sensitive action: deleting the sitemap via a request...
WP HTML Sitemap 1.2 - wp-html-sitemap.html Sitemap Deletion CSRF
The wp-html-sitemap WordPress plugin was affected by a wp-html-sitemap.html Sitemap Deletion CSRF security vulnerability...