CVE-2012-6078

2019-11-2218:50:14

redhat

www.cve.org

0.003 Low

EPSS

Percentile

71.2%

JSON

W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predict the values of the hashes.

CNA Affected

[
  {
    "product": "Total Cache",
    "vendor": "W3",
    "versions": [
      {
        "status": "affected",
        "version": "0.9.2.5"
      }
    ]
  }
]

References

www.openwall.com/lists/oss-security/2012/12/30/3

security-tracker.debian.org/tracker/CVE-2012-6078

www.acunetix.com/vulnerabilities/web/wordpress-w3-total-cache-plugin-predictable-cache-filenames/

www.w3-edge.com/weblog/2013/01/security-w3-total-cache-0-9-2-4/

0.003 Low

EPSS

Percentile

71.2%

JSON

Related for CVELIST:CVE-2012-6078