Cross-site request forgery (CSRF) vulnerability in the Login With Ajax plugin before 3.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that modify this plugin's settings.
References
Link | Resource |
---|---|
http://secunia.com/advisories/52950 | Vendor Advisory |
http://wordpress.org/extend/plugins/login-with-ajax/changelog/ | Patch |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2013-05-10 04:42
Updated : 2013-05-10 04:42
NVD link : CVE-2013-2707
Mitre link : CVE-2013-2707
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
wordpress
- wordpress
netweblogic
- login_with_ajax