CVE-2013-0736

EUVD-2013-0747
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mingle Forum plugin 1.0.34 and possibly earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) modify user privileges or (2) conduct cross-site scripting (XSS) attacks via unspecified vectors.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
Affected Products (NVD)
VendorProductVersion
cartpaujmingle-forum
𝑥
≤ 1.0.34
cartpaujmingle-forum
1.0.00
cartpaujmingle-forum
1.0.01
cartpaujmingle-forum
1.0.02
cartpaujmingle-forum
1.0.03
cartpaujmingle-forum
1.0.04
cartpaujmingle-forum
1.0.05
cartpaujmingle-forum
1.0.06
cartpaujmingle-forum
1.0.07
cartpaujmingle-forum
1.0.08
cartpaujmingle-forum
1.0.09
cartpaujmingle-forum
1.0.10
cartpaujmingle-forum
1.0.11
cartpaujmingle-forum
1.0.12
cartpaujmingle-forum
1.0.13
cartpaujmingle-forum
1.0.14
cartpaujmingle-forum
1.0.15
cartpaujmingle-forum
1.0.16
cartpaujmingle-forum
1.0.17
cartpaujmingle-forum
1.0.18
cartpaujmingle-forum
1.0.19
cartpaujmingle-forum
1.0.20
cartpaujmingle-forum
1.0.21
cartpaujmingle-forum
1.0.21.1
cartpaujmingle-forum
1.0.22
cartpaujmingle-forum
1.0.23
cartpaujmingle-forum
1.0.23.1
cartpaujmingle-forum
1.0.23.2
cartpaujmingle-forum
1.0.24
cartpaujmingle-forum
1.0.25
cartpaujmingle-forum
1.0.26
cartpaujmingle-forum
1.0.27
cartpaujmingle-forum
1.0.28
cartpaujmingle-forum
1.0.28.1
cartpaujmingle-forum
1.0.28.2
cartpaujmingle-forum
1.0.29
cartpaujmingle-forum
1.0.30
cartpaujmingle-forum
1.0.31
cartpaujmingle-forum
1.0.31.1
cartpaujmingle-forum
1.0.31.2
cartpaujmingle-forum
1.0.31.3
cartpaujmingle-forum
1.0.31.4
cartpaujmingle-forum
1.0.32
cartpaujmingle-forum
1.0.32.1
cartpaujmingle-forum
1.0.33
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/96905
http://secunia.com/advisories/47687
http://secunia.com/secunia_research/2013-6
http://www.securityfocus.com/bid/62133
http://osvdb.org/96905
http://secunia.com/advisories/47687
http://secunia.com/secunia_research/2013-6
http://www.securityfocus.com/bid/62133