Cross-site request forgery (CSRF) vulnerability in the XCloner plugin prior to 3.1.1 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that create website backups via a request to wp-admin/plugins.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xcloner xcloner |
||
xcloner xcloner 2.1.2 |
||
xcloner xcloner 3.0 |
||
xcloner xcloner 3.0.3 |
||
xcloner xcloner 3.0.1 |
||
xcloner xcloner 3.0.6 |
||
xcloner xcloner 3.0.8 |
||
xcloner xcloner 3.0.7 |
||
xcloner xcloner 3.0.5 |
||
xcloner xcloner 3.0.2 |
||
xcloner xcloner 3.0.4 |
||
xcloner xcloner 2.2.1 |
||
xcloner xcloner 2.1 |