Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 15 Jun 2015 23:40:06 +0000
From: Nitin Venkatesh <venkatesh.nitin@...il.com>
To: "oss-security@...ts.openwall.com" <oss-security@...ts.openwall.com>
Subject: CVE Request - Cross-Site Request Forgery Vulnerability in Users to
 CSV Wordpress Plugin v1.4.5

Hi,

I've discovered a CSRF vulnerability in the Users to CSV Wordpress Plugin
v1.4.5 which allows for user information can be exported via a GET request
to users.php. I request a CVE for the same.

References:
http://seclists.org/fulldisclosure/2015/Jun/44

Thank & regards,
Nitin Venkatesh

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ