Simple Ip Ban <= 1.2.3 – Multiple CSRF | CVE 2014-9413

Affects Plugins

simple-ip-ban

Fixed in 1.2.4

References

CVE

CVE-2014-9413

URL

https://packetstormsecurity.com/files/#129500/

URL

https://exchange.xforce.ibmcloud.com/vulnerabilities/99503

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

Miscellaneous

Verified

No

WPVDB ID

3f27e82b-25fb-4e91-b014-ab86226b8cd5

Timeline

Publicly Published

2014-12-12 (about 11 years ago)

Added

2019-08-21 (about 6 years ago)

Last Updated

2019-11-27 (about 6 years ago)

Other

Published

Title

Published

2022-01-18

Title

Better Messages < 1.9.9.149 - Cross-Site Request Forgery

Published

2023-03-31

Title

Health Check & Troubleshooting < 1.6.0 - CSRF

Published

2024-12-19

Title

Contact Form 7 Dynamic Text Extension < 5.0.2 - Cross-Site Request Forgery

Published

2022-04-11

Title

Yoo Slider < 2.1.0 - Arbitrary Template Import via CSRF

Published

2021-06-14

Title

Woocommerce Stock Manager < 2.6.0 - CSRF to Arbitrary File Upload