ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Firefox Adsense Plugin <= 3.0 - CSRF and XSS

Product
Firefox Adsense
Description
Because of this vulnerability in askapache-firefox-adsense.php, the attackers can hijack the authentication of administrators for requests that conduct cross-site scripting attacks.
Solution
Update the plugin.
Classification
Type Multi
References
CVE Mitre
CVE
Name CVE-2013-6992
Versions
Affected In <= 3.0
Fixed In 3.1
Disclosure date
2013-12-06
Credits
High-Tech Bridge SA