CVE-2014-3843

Cross-site request forgery (CSRF) vulnerability in the Search Everything plugin before 8.1.1 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:zemanta:search_everything:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:zemanta:search_everything:7.0.2:*:*:*:*:wordpress:*:*
cpe:2.3:a:zemanta:search_everything:7.0.3:*:*:*:*:wordpress:*:*
cpe:2.3:a:zemanta:search_everything:7.0.4:*:*:*:*:wordpress:*:*
cpe:2.3:a:zemanta:search_everything:8.0:*:*:*:*:wordpress:*:*
cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:08

Type Values Removed Values Added
References () http://secunia.com/advisories/58502 - () http://secunia.com/advisories/58502 -
References () http://wordpress.org/plugins/search-everything/changelog - () http://wordpress.org/plugins/search-everything/changelog -

Information

Published : 2014-05-22 15:13

Updated : 2024-11-21 02:08


NVD link : CVE-2014-3843

Mitre link : CVE-2014-3843

CVE.ORG link : CVE-2014-3843


JSON object : View

Products Affected

wordpress

  • wordpress

zemanta

  • search_everything
CWE
CWE-352

Cross-Site Request Forgery (CSRF)