Description
Cross-site request forgery (CSRF) vulnerability in the retrospam component in wp-admin/options-discussion.php in WordPress 2.0.11 and earlier allows remote attackers to hijack the authentication of administrators for requests that move comments to the moderation list.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP e-Commerce-Store Toolkit Privilege Escalation (2.0)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (7.1.04)
Oracle JRE CVE-2013-2437 Vulnerability (CVE-2013-2437)
WordPress Plugin Zotpress 'citation' Parameter Cross-Site Scripting (2.6.1)
Joomla Improper Input Validation Vulnerability (CVE-2021-26029)