RSS   Vulnerabilities for 'Contextual related posts'   RSS

2014-06-02
 
CVE-2014-3937

CWE-89
 

 
SQL injection vulnerability in the Contextual Related Posts plugin before 1.8.10.2 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

 
 
CVE-2013-2710

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in the Contextual Related Posts plugin before 1.8.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via unspecified vectors.

 


Copyright 2019, cxsecurity.com

 

Back to Top