CVE-2013-2705

Currently unrated

Key Information:

Vendor: Wordpress
Status: WordPress Simple Paypal Shopping Cart
Vendor: CVE Published:; 13 May 2014

Summary

Cross-site request forgery (CSRF) vulnerability in the WordPress Simple Paypal Shopping Cart plugin before 3.6 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings.

References

http://www.tipsandtricks-hq.com/ecommerce/wordpress-shopp...

x_refsource_CONFIRM

http://osvdb.org/93953

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/52963

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
May 13, 2014
Vulnerability Reserved
Mar 26, 2013