WordPress Plugin TinyMCE Color Picker Multiple Vulnerabilities - CVE-2014-3845
Reference:
CVE-2014-3845
Title:
WordPress Plugin TinyMCE Color Picker Multiple Vulnerabilities
Overview:
WordPress Plugin TinyMCE Color Picker is prone to multiple vulnerabilities including cross-site request forgery and security bypass vulnerabilities. Exploiting these issues may allow an attacker to perform otherwise restricted actions and subsequently e.g. manipulate plugin settings. WordPress Plugin TinyMCE Color Picker version 1.1 is vulnerable.