Lucene search
K

5 matches found

Prion
Prion
added 2008/04/28 8:5 p.m.27 views

Design/Logic Flaw

The cookie authentication method in WordPress 2.5 relies on a hash of a concatenated string containing USERNAME and EXPIRYTIME, which allows remote attackers to forge cookies by registering a username that results in the same concatenated string, as demonstrated by registering usernames beginning...

7.5CVSS6.8AI score0.05001EPSS
Exploits3References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/01/04 12:0 a.m.31 views

Fedora 8 : wordpress-2.3.2-1.fc8 (2008-0103)

This closes : http://www.blackhatdomainer.com/how-to-know-today-what-shoemoney-is-go ing-to-post-tomorrow/ http://www.securityfocus.com/archive/1/485252/30/0/threaded http://trac.wordpress.org/ticket/5487 Note that Tenable Network Security has extracted the preceding description block directly fr...

9.8CVSS8.1AI score0.09156EPSS
Exploits3References8
NVD
NVD
added 2007/11/19 9:46 p.m.25 views

CVE-2007-6013

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass authentication by obtaining the MD5 hash from the user database, then generating the authentication cookie from that hash...

9.8CVSS9.7AI score0.03279EPSS
Exploits1References13
OSV
OSV
added 2007/11/19 9:46 p.m.7 views

CVE-2007-6013

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass authentication by obtaining the MD5 hash from the user database, then generating the authentication cookie from that hash...

9.8CVSS9.6AI score
Exploits0References16
CVE
CVE
added 2007/11/19 9:0 p.m.77 views

CVE-2007-6013

CVE-2007-6013 affects WordPress 1.5 through 2.3.1. The issue stems from authentication cookies generated from an MD5 hash of a password hash, allowing an attacker who can access the user database to create a valid authentication cookie and bypass login. The connected OpenVAS entries reference Fed...

9.8CVSS9.6AI score0.03279EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder