ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Mail On Update Plugin - Cross Site Request Forgery

Product
Mail On Update
Description
Mail On Update plugin is prone to a cross site request forgery vulnerability. It allows an attacker to perform certain unauthorized actions in the context of the affected application.
Solution
Update the plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Exploit-DB
CVE
Name CVE- 2013-2107
Versions
Affected In <= 5.1.0
Fixed In 5.1.1
Disclosure date
2013-05-16
Credits
Henri Salo