Cross-site request forgery (CSRF) vulnerability in the retrospam component in wp-admin/options-discussion.php in WordPress 2.0.11 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that move comments to the moderation list.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wordpress wordpress |
||
wordpress wordpress 2.0 |
||
wordpress wordpress 2.0.1 |
||
wordpress wordpress 2.0.2 |
||
wordpress wordpress 2.0.4 |
||
wordpress wordpress 2.0.5 |
||
wordpress wordpress 2.0.6 |
||
wordpress wordpress 2.0.7 |
||
wordpress wordpress 2.0.8 |
||
wordpress wordpress 2.0.9 |
||
wordpress wordpress 2.0.10 |