Cross-Site Request Forgery Flaw in Related Posts by Zemanta Plugin for WordPress
CVE-2013-3477

Currently unrated

Key Information:

Vendor

Wordpress
Status
Related Posts
Vendor
CVE Published:
27 May 2014

What is CVE-2013-3477?

The Related Posts by Zemanta plugin prior to version 1.3.2 for WordPress is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability. This security issue allows remote attackers to exploit the plugin’s settings by hijacking the authentication of legitimate users through crafted requests. By manipulating user sessions, attackers can maliciously alter plugin settings without the user's consent, potentially leading to unauthorized modifications of WordPress configurations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/59840
vdb-entryx_refsource_BID
http://secunia.com/advisories/53321
third-party-advisoryx_refsource_SECUNIA
http://wordpress.org/plugins/related-posts-by-zemanta/cha...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.