exploitDog

GHSA-2x9x-8f2w-9hwc

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack the authentication of administrators for requests that lock a post, and consequently cause a denial of service (editing blockage), via a get-post-lock action.

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack the authentication of administrators for requests that lock a post, and consequently cause a denial of service (editing blockage), via a get-post-lock action.

Ссылки

EPSS

Процентиль: 94%

0.14757

Средний

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2015-5731

ubuntu

больше 9 лет назад

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack the authentication of administrators for requests that lock a post, and consequently cause a denial of service (editing blockage), via a get-post-lock action.

CVE-2015-5731

nvd

больше 9 лет назад

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack the authentication of administrators for requests that lock a post, and consequently cause a denial of service (editing blockage), via a get-post-lock action.

CVE-2015-5731

debian

больше 9 лет назад

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php i ...

EPSS

Процентиль: 94%

0.14757

Средний

CVE ID

Дефекты

CWE-352