CVE-2013-3256

EUVD-2013-3193
Cross-site request forgery (CSRF) vulnerability in the Shareaholic SexyBookmarks plugin 6.1.4.0 for WordPress allows remote attackers to hijack the authentication of users for requests that "manipulate plugin settings."
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
Affected Products (NVD)
VendorProductVersion
shareaholicsexybookmarks
6.1.4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/53138
http://wordpress.org/plugins/sexybookmarks/changelog/
http://www.securityfocus.com/bid/61561
https://exchange.xforce.ibmcloud.com/vulnerabilities/86126
http://secunia.com/advisories/53138
http://wordpress.org/plugins/sexybookmarks/changelog/
http://www.securityfocus.com/bid/61561
https://exchange.xforce.ibmcloud.com/vulnerabilities/86126