HMS Testimonials Multiple Cross Site Request Forgery Vulnerabilities

The HMS Testimonials plugin for WordPress is prone to multiple cross-site request-forgery vulnerabilities.

Exploiting these issues may allow a remote attacker to perform certain unauthorized actions in the context of the affected application. Other attacks are also possible.

HMS Testimonials 2.0.10 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus