CVE-2019-14680

Опубликовано: 08 авг. 2019

Источник: nvd

CVSS3: 5.7

CVSS2: 3.5

EPSS Низкий

Описание

The admin-renamer-extended (aka Admin renamer extended) plugin 3.2.1 for WordPress allows wp-admin/plugins.php?page=admin-renamer-extended/admin.php CSRF.

Ссылки

https://wpvulndb.com/vulnerabilities/9551
Third Party Advisory
https://www.pluginvulnerabilities.com/2019/06/24/cross-site-request-forgery-csrf-vulnerability-in-admin-renamer-extended/
Exploit
Third Party Advisory
https://wpvulndb.com/vulnerabilities/9551
Third Party Advisory
https://www.pluginvulnerabilities.com/2019/06/24/cross-site-request-forgery-csrf-vulnerability-in-admin-renamer-extended/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mijnpress:admin-renamer-extended:3.2.1:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 30%

0.00114

Низкий

5.7 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-fcq3-f4x7-qj85