Exit Strategy Plugin exitpage.php exitpageadmin cross-site request forgery
CVE-2013-10025

4.3MEDIUM

Key Information:

Vendor
Wordpress
Vendor
CVE Published:
8 April 2023

Summary

A vulnerability was found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this issue is the function exitpageadmin of the file exitpage.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. Upgrading to version 1.59 is able to address this issue. The patch is identified as d964b8e961b2634158719f3328f16eda16ce93ac. It is recommended to upgrade the affected component. VDB-225266 is the identifier assigned to this vulnerability.

Affected Version(s)

Exit Strategy Plugin 1.55

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

VulDB GitHub Commit Analyzer
.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.