Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2706

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2013-2706
Last Modified 14 Apr 2014 07:13:06
Published 11 Apr 2014 10:55:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-2706

Summary

Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.

Vulnerable Systems

Application

  • Rodrigo Polo Stream Video Player 1.4.0


References

SECUNIA - 52954

OSVDB - 94466


Last Updated: 27 May 2016 11:04:53