Attendance Manager <= 0.5.6 - CSRF & XSS

🗓️ 10 Jun 2019 00:00:00Reported by Ryan DewhurstType

Attendance Manager plugin CSRF & XSS vulnerabilit

Reporter	Title	Published	Views	Family All 9
Japan Vulnerability Notes	JVN#95685939: Multiple vulnerabilities in WordPress Plugin "Attendance Manager"	10 Jun 201900:00	–	jvn
Cvelist	CVE-2019-5971	5 Jul 201913:20	–	cvelist
Cvelist	CVE-2019-5970	5 Jul 201913:20	–	cvelist
Prion	Cross site request forgery (csrf)	5 Jul 201914:15	–	prion
Prion	Cross site scripting	5 Jul 201914:15	–	prion
CVE	CVE-2019-5971	5 Jul 201914:15	–	cve
CVE	CVE-2019-5970	5 Jul 201914:15	–	cve
NVD	CVE-2019-5971	5 Jul 201914:15	–	nvd
NVD	CVE-2019-5970	5 Jul 201914:15	–	nvd

Vulners

Node

-attendance-managerRange<0.5.7

Source	Link
jvn	www.jvn.jp/en/jp/JVN95685939/index.html
plugins	www.plugins.trac.wordpress.org/changeset/2093162/attendance-manager
attmgr	www.attmgr.com/fixed-vulnerability-issue/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jun 2019 00:00Current

2.7Low risk

Vulners AI Score2.7

EPSS0.00367