First published: Fri Jun 21 2013(Updated: )
Cross-site request forgery (CSRF) vulnerability in the WP Maintenance Mode plugin before 1.8.8 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that modify this plugin's settings.
Credit: PSIRT-CNA@flexerasoftware.com
Affected Software | Affected Version | How to fix |
---|---|---|
Wordpress Wp Maintenance Mode Plugin | <=1.8.7 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.0 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.1 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.2 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.3 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.4 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.5 | |
Wordpress Wp Maintenance Mode Plugin | =1.8.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.