Unrated severityNVD Advisory· Published Oct 24, 2008· Updated Jun 16, 2026
CVE-2008-4734
CVE-2008-4734
Description
Cross-site request forgery (CSRF) vulnerability in the wpcr_do_options_page function in WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to perform unauthorized actions as administrators via a request that sets the wpcr_hidden_form_input parameter.
Affected products
3cpe:2.3:a:pressography:wp_comment_remix_plugin:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:pressography:wp_comment_remix_plugin:*:*:*:*:*:*:*:*range: <=1.4.3
- cpe:2.3:a:pressography:wp_comment_remix_plugin:1.4:*:*:*:*:*:*:*
- Range: <1.4.4
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.