Whydowork Adsense Project Whydowork Adsense vulnerabilities
2 known vulnerabilities affecting whydowork_adsense_project/whydowork_adsense.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2014-9099P3MEDIUMCVSS 6.8PoCv1.22014-11-26
CVE-2014-9099 [MEDIUM] CWE-352 CVE-2014-9099: Cross-site request forgery (CSRF) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress al
Cross-site request forgery (CSRF) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via a request to the whydowork_adsense page in wp-admin/options-general.php.
nvd
CVE-2014-9100P4MEDIUMCVSS 4.3v1.22014-11-26
CVE-2014-9100 [MEDIUM] CWE-79 CVE-2014-9100: Cross-site scripting (XSS) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows re
Cross-site scripting (XSS) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the idcode parameter in the whydowork_adsense page to wp-admin/options-general.php.
nvd