Unrated severityNVD Advisory· Published Apr 11, 2014· Updated Jun 16, 2026
CVE-2013-2706
CVE-2013-2706
Description
Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors.
Affected products
1- cpe:2.3:a:rodrigo_polo:stream_video_player:1.4.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- secunia.com/advisories/52954nvdVendor Advisory
- osvdb.org/94466nvd
News mentions
0No linked articles in our index yet.