ThreatPress

WordPress Vulnerabilities Database

Back

WordPress blogVault Plugin <= 1.05 - Cross Site Request Forgery

Product
BlogVault
Description
This plugin is prone to a admin.php blogVault key setting cross site request forgery vulnerability.
Solution
Update the plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
CVE
Name CVE-N/A
Versions
Affected In <= 1.05
Fixed In 1.06
Disclosure date
2014-08-01