Lucene search
CVE-2014-0166
🗓️ 10 Apr 2014 00:09:55Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 20 Views
The wp_validate_auth_cookie function in WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote attackers to obtain access via a forged cookie
Show more
| Reporter | Title | Published | Views | Family All 39 |
|---|---|---|---|---|
 | CVE-2014-0166 | 10 Apr 201400:55 | – | cve |
 | WordPress 3.7.1 & 3.8.1 - Potential Authentication Cookie Forgery | 1 Aug 201400:00 | – | wpvulndb |
 | CVE-2014-0166 | 10 Apr 201400:00 | – | ubuntucve |
 | CVE-2014-0166 | 9 Apr 201423:00 | – | cvelist |
 | Authentication flaw | 10 Apr 201400:55 | – | prion |
 | CVE-2014-0166 | 10 Apr 201400:55 | – | nvd |
 | WordPress <= 3.8.1 - Multiple vulnerabilities | 3 Dec 201300:00 | – | patchstack |
 | Fedora 19 : wordpress-3.8.3-1.fc19 (2014-5028) | 25 Apr 201400:00 | – | nessus |
| Fedora 20 : wordpress-3.8.2-1.fc20 (2014-5029) | 16 Apr 201400:00 | – | nessus |
| Mandriva Linux Security Advisory : wordpress (MDVSA-2014:103) | 19 May 201400:00 | – | nessus |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | 3.8.2+dfsg-1 | wordpress_3.8.2+dfsg-1_all.deb |
| Debian | 11 | all | wordpress | 3.8.2+dfsg-1 | wordpress_3.8.2+dfsg-1_all.deb |
| Debian | 999 | all | wordpress | 3.8.2+dfsg-1 | wordpress_3.8.2+dfsg-1_all.deb |
| Debian | 13 | all | wordpress | 3.8.2+dfsg-1 | wordpress_3.8.2+dfsg-1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo10 Apr 2014 00:55Current
6.7Medium risk
Vulners AI Score6.7
CVSS26.4
EPSS0.34833