Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2706


Vulnerability Score 6.8 6.8
CVE Id CVE-2013-2706
Last Modified 14 Apr 2014 07:13:06
Published 11 Apr 2014 10:55:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.

Vulnerable Systems


  • Rodrigo Polo Stream Video Player 1.4.0


SECUNIA - 52954

OSVDB - 94466

Last Updated: 27 May 2016 11:04:53