Cross-site request forgery (CSRF) vulnerability in the retrospam component in wp-admin/options-discussion.php in WordPress 2.0.11 and earlier allows remote attackers to hijack the authentication of administrators for requests that move comments to the moderation list.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-12-29 20:53
Updated : 2013-12-30 17:42
NVD link : CVE-2013-7233
Mitre link : CVE-2013-7233
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
wordpress
- wordpress