Описание
W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to insecure storage of database cache files.
W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to insecure storage of database cache files.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-6077
- https://security-tracker.debian.org/tracker/CVE-2012-6077
- https://www.acunetix.com/vulnerabilities/web/wordpress-w3-total-cache-plugin-predictable-cache-filenames
- https://www.checkpoint.com/defense/advisories/public/2013/cpai-24-oct2.html
- https://www.w3-edge.com/weblog/2013/01/security-w3-total-cache-0-9-2-4
- http://www.openwall.com/lists/oss-security/2012/12/30/3
Связанные уязвимости
CVSS3: 7.5
nvd
около 6 лет назад
W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to insecure storage of database cache files.