CVE-2013-0736

Multiple cross-site request forgery (CSRF) vulnerabilities in the Mingle Forum plugin 1.0.34 and possibly earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) modify user privileges or (2) conduct cross-site scripting (XSS) attacks via unspecified vectors.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
cartpaujmingle-forum
𝑥
≤ 1.0.34
cartpaujmingle-forum
1.0.00
cartpaujmingle-forum
1.0.01
cartpaujmingle-forum
1.0.02
cartpaujmingle-forum
1.0.03
cartpaujmingle-forum
1.0.04
cartpaujmingle-forum
1.0.05
cartpaujmingle-forum
1.0.06
cartpaujmingle-forum
1.0.07
cartpaujmingle-forum
1.0.08
cartpaujmingle-forum
1.0.09
cartpaujmingle-forum
1.0.10
cartpaujmingle-forum
1.0.11
cartpaujmingle-forum
1.0.12
cartpaujmingle-forum
1.0.13
cartpaujmingle-forum
1.0.14
cartpaujmingle-forum
1.0.15
cartpaujmingle-forum
1.0.16
cartpaujmingle-forum
1.0.17
cartpaujmingle-forum
1.0.18
cartpaujmingle-forum
1.0.19
cartpaujmingle-forum
1.0.20
cartpaujmingle-forum
1.0.21
cartpaujmingle-forum
1.0.21.1
cartpaujmingle-forum
1.0.22
cartpaujmingle-forum
1.0.23
cartpaujmingle-forum
1.0.23.1
cartpaujmingle-forum
1.0.23.2
cartpaujmingle-forum
1.0.24
cartpaujmingle-forum
1.0.25
cartpaujmingle-forum
1.0.26
cartpaujmingle-forum
1.0.27
cartpaujmingle-forum
1.0.28
cartpaujmingle-forum
1.0.28.1
cartpaujmingle-forum
1.0.28.2
cartpaujmingle-forum
1.0.29
cartpaujmingle-forum
1.0.30
cartpaujmingle-forum
1.0.31
cartpaujmingle-forum
1.0.31.1
cartpaujmingle-forum
1.0.31.2
cartpaujmingle-forum
1.0.31.3
cartpaujmingle-forum
1.0.31.4
cartpaujmingle-forum
1.0.32
cartpaujmingle-forum
1.0.32.1
cartpaujmingle-forum
1.0.33
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/96905
http://secunia.com/advisories/47687
http://secunia.com/secunia_research/2013-6
http://www.securityfocus.com/bid/62133
http://osvdb.org/96905
http://secunia.com/advisories/47687
http://secunia.com/secunia_research/2013-6
http://www.securityfocus.com/bid/62133