CVE-2013-2706

Currently unrated

Key Information:

Vendor: Wordpress
Status: Stream Video Player
Vendor: CVE Published:; 11 April 2014

Summary

Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.

References

http://osvdb.org/94466

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/52954

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Apr 11, 2014
Vulnerability Reserved
Mar 26, 2013