WordPress Plugin Vulnerabilities

Related Posts 2.7.1 - Cross-Site Request Forgery

Description

The related-posts WordPress plugin was affected by a Cross-Site Request Forgery security vulnerability.

Affects Plugins

Plugin icon
related-posts
Fixed in 2.7.2

References

CVE
CVE-2013-3257

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Verified
No
WPVDB ID
911cc55f-5011-4f6d-982e-00689fd59a3e

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2024-02-20
Title
Innovs HR <= 1.0.3.4 - Employee Creation via CSRF
Published
2025-02-24
Title
WordPress File Upload < 4.25.3 - Cross-Site Request Forgery in wfu_file_details
Published
2025-08-25
Title
Google XML News Sitemap plugin <= 0.02 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2024-12-11
Title
WP Currency Exchange Rates < 1.3.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2025-03-24
Title
Yummly Rich Recipes <= 4.2 - Cross-Site Request Forgery