ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Uninstall Plugin <= 1.1 - WordPress Deletion via CSRF

Product
Uninstall
Description
Because of this vulnerability, it is possible to delete all WordPress database files and tables.
Solution
Upgrade this plugin.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Pastebin
CVE
Name CVE-N/A
Versions
Affected In <= 1.1
Fixed In 1.2
Disclosure date
2015-02-11
Submitter
ThreatPress