PT-2023-10288 · WordPress · Video Playlist/Gallery Plugin
Nicashmu
·
Published
2023-06-01
·
Updated
2024-05-17
·
CVE-2015-10109
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Video Playlist and Gallery Plugin versions up to 1.136
Description
A problem was found in the Video Playlist and Gallery Plugin. It affects some unknown functionality of the file
wp-media-cincopa.php. The issue leads to cross-site request forgery. The attack can be launched remotely.Recommendations
For Video Playlist and Gallery Plugin versions up to 1.136, upgrade to version 1.137 to address this issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Video Playlist/Gallery Plugin