CVE-2012-3384

Опубликовано: 22 июл. 2012

Источник: debian

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wordpress	fixed	3.4.1+dfsg-1		package

Примечания

https://www.openwall.com/lists/oss-security/2012/07/02/1
https://www.openwall.com/lists/oss-security/2012/07/08/1

EPSS

Процентиль: 40%

0.00179

Низкий

Связанные уязвимости

CVE-2012-3384

ubuntu

больше 13 лет назад

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVE-2012-3384

nvd

больше 13 лет назад

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

GHSA-m93w-3www-hrw9

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

EPSS

Процентиль: 40%

0.00179

Низкий