CVE-2014-9037

2014-11-25T18:59:08
ID CVE-2014-9037
Type cve
Reporter NVD
Modified 2016-06-30T12:58:39

Description

WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers to obtain access to an account idle since 2008 by leveraging an improper PHP dynamic type comparison for an MD5 hash.