Cross-Site Request Forgery in WP Maintenance Mode for WordPress
CVE-2013-3250

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP Maintenance Mode Plugin
Vendor: CVE Published:; 21 June 2013

What is CVE-2013-3250?

The WP Maintenance Mode plugin for WordPress is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that allows attackers to exploit the authentication of legitimate users. By crafting a malicious request, these remote attackers can manipulate the plugin's settings without the user's consent. This can lead to unauthorized alterations that may compromise the integrity and security of the website, making it imperative for users to update to version 1.8.8 or later to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/53125

third-party-advisoryx_refsource_SECUNIA

http://wordpress.org/plugins/wp-maintenance-mode/changelog/

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 21, 2013

JSON

Wordpress

What is CVE-2013-3250?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.