Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin JW Player for Flash HTML5 Video Cross-Site Request Forgery - CVE-2014-4030 - Vulnerability Database
WP Plugin Jw Player Plugin For Wordpress

WordPress Plugin JW Player for Flash HTML5 Video Cross-Site Request Forgery - CVE-2014-4030

Medium
Reference: CVE-2014-4030
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-4030
Title: WordPress Plugin JW Player for Flash HTML5 Video Cross-Site Request Forgery
Overview:

WordPress Plugin JW Player for Flash HTML5 Video is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application other attacks are also possible. WordPress Plugin JW Player for Flash HTML5 Video version 2.1.3 is vulnerable prior versions may also be affected.