Description
A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.
Remediation
References
Related Vulnerabilities
WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Unspecified Vulnerability (5.1.2)
WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.31)
phpMyFAQ Improper Access Control Vulnerability (CVE-2023-2429)
WordPress Plugin Judge.me Product Reviews for WooCommerce Cross-Site Scripting (1.3.20)