WordPress Lazy Content Slide Plugin <= 1.4.2 - CSRF

2013-03-2600:00:00

N/A

patchstack.com

0.001 Low

EPSS

Percentile

40.7%

JSON

Because of this vulnerability, the attackers can hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.

Solution

           Update the plugin.

CPENameOperatorVersion
lazy content sliderle1.4.2

CPE	Name	Operator	Version
	lazy content slider	le	1.4.2

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2708

0.001 Low

EPSS

Percentile

40.7%

JSON

Related for PATCHSTACK:5D12EDA2D31D2AAEEEA1262D1A516E1D