core/views/arprice_import_export.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arplite_import_export CSRF.
References
Link | Resource |
---|---|
https://wordpress.org/plugins/arprice-responsive-pricing-table/#developers | Third Party Advisory |
https://www.pluginvulnerabilities.com/2019/07/11/cross-site-request-forgery-csrf-vulnerability-in-arprice-lite/ | Exploit Third Party Advisory |
Configurations
Information
Published : 2019-08-08 13:15
Updated : 2019-08-19 10:52
NVD link : CVE-2019-14679
Mitre link : CVE-2019-14679
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
reputeinfosystems
- arprice_lite