[wp-trac] [WordPress Trac] #26766: CSRF in posts and users manager pages.

Fri Jan 3 19:22:36 UTC 2014

#26766: CSRF in posts and users manager pages.
--------------------------+-----------------------------
 Reporter:  rodolfofenix  |      Owner:
     Type:  defect (bug)  |     Status:  new
 Priority:  normal        |  Milestone:  Awaiting Review
Component:  Security      |    Version:  3.6.1
 Severity:  normal        |   Keywords:
--------------------------+-----------------------------
 Attackers can make the logged users with administrator privileges click on
 forged links that can delete users or posts.

--
Ticket URL: <https://core.trac.wordpress.org/ticket/26766>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress blogging software