2 matches found
CVE-2012-5868
WordPress 3.4.2 does not invalidate the wordpress_sec session cookie upon an administrator logout, enabling potential discovery of valid session identifiers via brute-force or data replay. The description is consistently reported across multiple sources (CVE-2012-5868 entries in NVD and CVE recor...
WordPress 'wp-login.php'安全绕过漏洞(CVE-2012-5868)
Bugtraq ID:57019 CVE ID:CVE-2012-5868 WordPress是一款使用PHP语言开发的内容管理系统。 当通过注销链接https://domainame.com/wp-login.php?action=logout从WordPress...