ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Easy Media Gallery Plugin <= 1.2.25 - CSRF

Product
Easy Media Gallery
Description
This plugin is prone to a cross site request forgery vulnerability in includes/emg-settings.php spg_add_admin function.
Solution
Update the plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Secunia
CVE
Name CVE-N/A
Versions
Affected In <= 1.2.25
Fixed In 1.2.27
Disclosure date
2014-08-01