CVE-2015-9433

Published: 2019-09-26T02:15Z

Last Modified: 2024-11-21T02:40Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The wp-social-bookmarking-light plugin before 1.7.10 for WordPress has CSRF with resultant XSS via configuration parameters for Tumblr, Twitter, Facebook, etc. in wp-admin/options-general.php?page=wp-social-bookmarking-light%2Fmodules%2Fadmin.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt