ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Icegram Plugin <= 1.9.18 - Cross Site Request Forgery

Product
Icegram
Description
This vulnerability allows an attacker to overwrite any WordPress option with the value true.
Solution
Upgrade this plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
SecLists
CVE
Name CVE-N/A
Versions
Affected In <= 1.9.18
Fixed In 1.9.19
Disclosure date
2016-07-19
Credits
Yorick Koster
Submitter
ThreatPress