- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 39212
- Проверка EDB
-
- Пройдено
- Автор
- TOM ADAMS
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2014-4030
- Дата публикации
- 2014-06-10
WordPress Plugin JW Player for Flash & HTML5 Video - Cross-Site Request Forgery
Код:
source: https://www.securityfocus.com/bid/67954/info
JW Player for Flash & HTML5 Video is a Plugin for WordPress is prone to a cross-site request-forgery vulnerability.
Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
JW Player for Flash & HTML5 Video 2.1.3 is vulnerable; other versions may also be affected.
http://www.example.com/wp-admin/admin.php?page=jwp6_menu&player_id=1&action=delete- Источник
- www.exploit-db.com
