ThreatPress

WordPress Vulnerabilities Database

Back

WordPress 2.0.11 - Cross Site Request Forgery

Product
WordPress
Description
WordPress 2.0.11 version is prone to a cross site request forgery via "/wp-admin/options-discussion.php". It allows an attacker to perform certain unauthorized actions in the context of the affected application.
Solution
Update WordPress.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Exploit-DB
CVE
Name CVE-2013-7233
Versions
Affected In <= 2.0.11
Fixed In 2.0.12
Disclosure date
2013-12-17
Credits
MustLive