[wp-forums] Fwd: [wp-hackers] CSRF vulnerability in WP HTML Sitemap 1.2 (WordPress plugin)

Mark Ratledge mark at markratledge.com
Fri Mar 28 17:18:01 UTC 2014


FYI, the link shown below to the WP repository is dead; the plugin is at https://github.com/wp-plugins/wp-html-sitemap and from there, the linked author's domain is dead.  -- mark

On Mar 28, 2014, at 10:56 AM, Marius Jensen wrote:

> They'd be better aimed at the plugins@ mailing list as it doesn't relate to
> WP core, but I wouldn't call them outright spam I guess.
> 
> 
> On Fri, Mar 28, 2014 at 3:04 PM, Daniel <danielx386 at gmail.com> wrote:
> 
>> Got several of those reports, are they considered spam?
>> ================
>> Software: WP HTML Sitemap
>> Version: 1.2
>> Homepage: http://wordpress.org/plugins/wp-html-sitemap/
>> CVSS: 4.3 (Medium; AV:N/AC:M/Au:N/C:N/I:P/A:N)



More information about the wp-forums mailing list