Wordpress Anyone Plugin 'by-email.php' Session Management Security Bypass Vulnerability

Bugtraq ID: 96965
Class: Design Error
CVE: CVE-2017-6955
Remote: Yes
Local: No
Published: Mar 17 2017 12:00AM
Updated: Mar 23 2017 02:01AM
Credit: Ewoud Vlasselaer, Eric Schayes, and Nabeel Ahmed.
Vulnerable: WordPress Anyone 1.3.14
Not Vulnerable: WordPress Anyone 1.3.15


 

Privacy Statement
Copyright 2010, SecurityFocus