CVE

Id
63204  
CVE No.
CVE-2013-3257  
Status
Candidate  
Description
Cross-site request forgery (CSRF) vulnerability in the Related Posts plugin before 2.7.2 for WordPress allows remote attackers to hijack the authentication of users for requests that modify settings via unspecified vectors.  
Phase
Assigned (20130422)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
628686 63204 CVE-2013-3257 CONFIRM:http://wordpress.org/plugins/related-posts/changelog/  View
628687 63204 CVE-2013-3257 BID:59836  View
628688 63204 CVE-2013-3257 URL:http://www.securityfocus.com/bid/59836  View
628689 63204 CVE-2013-3257 SECUNIA:53122  View
628690 63204 CVE-2013-3257 URL:http://secunia.com/advisories/53122  View
628691 63204 CVE-2013-3257 XF:wp-relatedposts-cve20133257-unspecified-csrf(84245)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
22120 JVNDB-2013-003695 WordPress 用 Download Monitor プラグインにおけるクロスサイトスクリプティングの脆弱性 WordPress 用 Download Monitor プラグインの admin/admin.php には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-3262 63204 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003695.html  View