CVE-2015-9337
| CVE-2015-9337 | |
| Description | The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX. |
| Impact |
CVSS v3 : 7.5 HIGH
CVSS v2 : 5 MEDIUM
|
| Type | |
| Attack Vector |
CVSSv2 Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N |
| Quick links | CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google |
| References | |