Lucene search
FlexeraCVE-2013-2701HistoryNov 01, 2013 - 3:55 p.m.
CVE-2013-2701
2013-11-0115:55:03
CWE-352
flexera
web.nvd.nist.gov
18
cve-2013-2701
csrf
vulnerability
social sharing toolkit
wordpress
remote attackers
authentication
administrators
plugin settings
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
41.2%
Cross-site request forgery (CSRF) vulnerability in the Social Sharing Toolkit plugin 2.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that manipulate plugin settings via unknown vectors.
Affected configurations
Node
linksalphasocial_sharing_toolkit_pluginMatch2.1.1-wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linksalpha | social_sharing_toolkit_plugin | 2.1.1 | cpe:2.3:a:linksalpha:social_sharing_toolkit_plugin:2.1.1:-:*:*:*:wordpress:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2013-11-01 15:55:00
wpvulndb
wpvulndb
Social Sharing Toolkit 2.1.1 - Setting Manipulation CSRF
2014-08-01 10:59:05
patchstack
patchstack
WordPress Social Sharing Toolkit Plugin <= 2.1.1 - CSRF
2013-03-26 00:00:00
cvelist
cvelist
CVE-2013-2701
2013-11-01 14:00:00
nvd
nvd
CVE-2013-2701
2013-11-01 15:55:03
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
41.2%
Related for CVE-2013-2701