Описание
W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes.
W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-6078
- https://security-tracker.debian.org/tracker/CVE-2012-6078
- https://www.acunetix.com/vulnerabilities/web/wordpress-w3-total-cache-plugin-predictable-cache-filenames
- https://www.w3-edge.com/weblog/2013/01/security-w3-total-cache-0-9-2-4
- http://www.openwall.com/lists/oss-security/2012/12/30/3
Связанные уязвимости
CVSS3: 7.5
nvd
около 6 лет назад
W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes.