Vulnerabilities (CVE)

Filtered by vendor Doc4design Subscribe
Filtered by product Multicons
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-9424 1 Doc4design 1 Multicons 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
The multicons plugin before 3.0 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=multicons%2Fmulticons.php global_url or admin_url parameter.