CVE-2013-7233

Publication date

2013-12-30 02:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in the retrospam component in wp-admin/options-discussion.php in WordPress 2.0.11 and earlier allows remote attackers to hijack the authentication of administrators for requests that move comments to the moderation list.