Description
Cross-site request forgery (CSRF) vulnerability in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims via vectors involving a Flash file upload.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11)
WordPress 'wp-admin/options.php' Remote Code Execution Vulnerability (0.6.2 - 2.3.2)
SharePoint CVE-2019-1205 Vulnerability (CVE-2019-1205)
WordPress Plugin gSlideShow Cross-Site Request Forgery (0.1)
WordPress Plugin All Category SEO Updater Cross-Site Scripting (0.2.7)