Lucene search
FreeBSD2430E9C3-8741-11DE-938E-003048590F9EHistoryAug 10, 2009 - 12:00 a.m.
wordpress -- remote admin password reset vulnerability
2009-08-1000:00:00
vuxml.freebsd.org
15
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.927 High
EPSS
Percentile
99.0%
WordPress reports:
A specially crafted URL could be requested that would allow an
attacker to bypass a security check to verify a user requested a
password reset. As a result, the first account without a key in the
database (usually the admin account) would have its password reset and
a new password would be emailed to the account owner.
Related
prion
prion
Design/Logic Flaw
2009-08-13 16:30:00
nessus
nessus
cve
cve
CVE-2009-2762
2009-08-13 16:30:00
patchstack
patchstack
WordPress <= 2.8.2 - BYPASS
2009-08-13 00:00:00
openvas
openvas
WordPress wp-login.php Security Bypass Vulnerability
2009-08-20 00:00:00
FreeBSD Ports: wordpress
2009-08-17 00:00:00
WordPress-MU < 2.8.4 'wp-login.php' Security Bypass Vulnerability
2009-08-20 00:00:00
ubuntucve
ubuntucve
CVE-2009-2762
2009-08-13 00:00:00
debiancve
debiancve
CVE-2009-2762
2009-08-13 16:30:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.927 High
EPSS
Percentile
99.0%
Related for 2430E9C3-8741-11DE-938E-003048590F9E