WordPress Anti-CSRF Token Security Bypass Weakness

Bugtraq ID: 53280
Class: Design Error
CVE: CVE-2012-1936
Remote: Yes
Local: No
Published: Apr 27 2012 12:00AM
Updated: Apr 27 2012 12:00AM
Credit: Ivano Binetti
Vulnerable: WordPress WordPress 3.1.4
WordPress WordPress 3.1.3
WordPress WordPress 3.1.2
WordPress WordPress 3.1.1
WordPress WordPress 3.0.5
WordPress WordPress 3.0.4
WordPress WordPress 3.0.3
WordPress WordPress 3.0.2
WordPress WordPress 2.9.2
WordPress WordPress 2.9.1
WordPress WordPress 2.8.6
WordPress WordPress 2.8.5
WordPress WordPress 2.8.4
WordPress WordPress 2.8.3
WordPress WordPress 2.8.2
WordPress WordPress 2.8.1
WordPress WordPress 3.3.1
WordPress WordPress 3.3
WordPress WordPress 3.1.3
WordPress WordPress 3.1
WordPress WordPress 3.0.6
WordPress WordPress 3.0.4
WordPress WordPress 3.0.3
WordPress WordPress 3.0.2
WordPress WordPress 3.0.1
WordPress WordPress 3.0
WordPress WordPress 2.9.1.1
WordPress WordPress 2.9
WordPress WordPress 2.8.5.2
WordPress WordPress 2.8.5.1
WordPress WordPress 2.8
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus