CVE-2013-3258

Cross-site request forgery (CSRF) vulnerability in he Digg Digg plugin before 5.3.5 for WordPress allows remote attackers to hijack the authentication of users for requests that modify settings via unspecified vectors.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
flexeraCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
bufferappdigg_digg
𝑥
≤ 5.3.4
bufferappdigg_digg
5.0
bufferappdigg_digg
5.0.1
bufferappdigg_digg
5.0.2
bufferappdigg_digg
5.0.3
bufferappdigg_digg
5.0.4
bufferappdigg_digg
5.0.5
bufferappdigg_digg
5.1
bufferappdigg_digg
5.1.1
bufferappdigg_digg
5.1.2
bufferappdigg_digg
5.2
bufferappdigg_digg
5.2.1
bufferappdigg_digg
5.2.2
bufferappdigg_digg
5.2.3
bufferappdigg_digg
5.2.4
bufferappdigg_digg
5.2.5
bufferappdigg_digg
5.2.6
bufferappdigg_digg
5.2.7
bufferappdigg_digg
5.2.8
bufferappdigg_digg
5.2.9
bufferappdigg_digg
5.3.0
bufferappdigg_digg
5.3.1
bufferappdigg_digg
5.3.2
bufferappdigg_digg
5.3.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/53120
http://wordpress.org/plugins/digg-digg/changelog/
http://www.securityfocus.com/bid/60046
https://exchange.xforce.ibmcloud.com/vulnerabilities/84418
http://secunia.com/advisories/53120
http://wordpress.org/plugins/digg-digg/changelog/
http://www.securityfocus.com/bid/60046
https://exchange.xforce.ibmcloud.com/vulnerabilities/84418