ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Husker Portfolio Plugin <= 0.3 - Cross Site Request Forgery

Product
Husker Portfolio
Description
This plugin is prone to a cross site request forgery vulnerability in huskerPortfolio.php.
Solution
Upgrade the plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Packet Storm Security
CVE
Name CVE-N/A
Versions
Affected In <= 0.3
Fixed In 0.4
Disclosure date
2015-05-15
Credits
Ashiyane Digital Security Team