Search...

W3 Total Cache < 0.9.7.3 - Cryptographic Signature Bypass

2019-05-06T00:00:00

ID WPVDB-ID:9271
Type wpvulndb
Reporter
Modified 2019-11-01T20:54:45

Description

The return value of `openssl_verify` is not properly validated, which allows to bypass the cryptographic check.

JSON Vulners Source

Initial Source

{"id": "WPVDB-ID:9271", "type": "wpvulndb", "bulletinFamily": "software", "title": "W3 Total Cache < 0.9.7.3 - Cryptographic Signature Bypass", "description": "The return value of `openssl_verify` is not properly validated, which allows to bypass the cryptographic check.\n", "published": "2019-05-06T00:00:00", "modified": "2019-11-01T20:54:45", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://wpvulndb.com/vulnerabilities/9271", "reporter": "", "references": ["https://plugins.trac.wordpress.org/changeset/2081515/w3-total-cache#file21"], "cvelist": [], "lastseen": "2020-12-09T20:26:39", "viewCount": 82, "enchantments": {"dependencies": {"references": [], "modified": "2020-12-09T20:26:39", "rev": 2}, "score": {"value": 2.6, "vector": "NONE", "modified": "2020-12-09T20:26:39", "rev": 2}, "vulnersScore": 2.6}, "affectedSoftware": [{"name": "w3-total-cache", "version": "0.9.7.4", "operator": "lt"}], "exploit": "", "sourceData": ""}

W3 Total Cache &lt; 0.9.7.3 - Cryptographic Signature Bypass

Description

The return value of openssl_verify is not properly validated, which allows to bypass the cryptographic check.

W3 Total Cache < 0.9.7.3 - Cryptographic Signature Bypass

The return value of `openssl_verify` is not properly validated, which allows to bypass the cryptographic check.