CVE-2014-5072

HIGH

WP Security Audit Log < 1.2.5 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in WP Security Audit Log plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

References (2)

Core 2

Scores

CVSS v3 8.8
EPSS 0.0087
EPSS Percentile 54.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (1)
wpsecurityauditlog/wp_security_audit_log < 1.2.5
Published Apr 06, 2018
Tracked Since Feb 18, 2026