CVE-2014-9391
CVE-2014-9391 affects the WordPress gSlideShow plugin (version 0.1 and earlier). The vulnerability is a multi-parameter CSRF (and associated XSS in documentation) in gslideshow.php that allows remote attackers to hijack administrator authentication for requests to wp-admin/options-general.php via...