VYPR
Medium severity6.5NVD Advisory· Published Sep 26, 2019· Updated Jun 17, 2026

CVE-2015-9424

CVE-2015-9424

Description

The multicons plugin before 3.0 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=multicons%2Fmulticons.php global_url or admin_url parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.