ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Ad Inserter Plugin 1.5.2 - CSRF

Product
Ad Inserter
Description
CSRF vulnerability allows an attacker to insert an arbitrary script into admin page. After that an attacker can do almost anything on the admin's browser.
Solution
Update to Latest version 1.5.3.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.5.2
Fixed In 1.5.3
Disclosure date
2015-05-08
Credits
Kaustubh G. Padwad