Unrated severityNVD Advisory· Published Jan 10, 2008· Updated Jun 16, 2026
CVE-2008-0205
CVE-2008-0205
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 and earlier plugin for WordPress allow remote attackers to perform actions as administrators via the (1) mcsp_opt_msg_no_answer or (2) mcsp_opt_msg_wrong_answer parameter to wp-admin/options-general.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:wordpress:math_comment_spam_protection_plugin:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:wordpress:math_comment_spam_protection_plugin:*:*:*:*:*:*:*:*range: <=2.1
- (no CPE)range: <=2.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.