CVE-2013-2710 Information

Description

Cross-site request forgery (CSRF) vulnerability in the Contextual Related Posts plugin before 1.8.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via unspecified vectors.

Reference

http://secunia.com/advisories/52960 http://wordpress.org/plugins/contextual-related-posts/changelog/ http://www.securityfocus.com/bid/59733 https://exchange.xforce.ibmcloud.com/vulnerabilities/84100