Cross-site request forgery (CSRF) vulnerability in the Login rebuilder plugin before 1.2.0 for WordPress allows remote attackers to hijack the authentication of arbitrary users.
References
Link | Resource |
---|---|
http://12net.jp/news/n20140623_01.html | Patch Vendor Advisory |
http://jvn.jp/en/jp/JVN05329568/index.html | |
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000062 | |
http://wordpress.org/plugins/login-rebuilder/changelog/ | Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2014-06-25T10:00:00
Updated: 2014-06-25T05:57:00
Reserved: 2014-05-27T00:00:00
Link: CVE-2014-3882
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-06-25T11:19:22.230
Modified: 2014-06-25T14:35:14.943
Link: CVE-2014-3882
JSON object: View
Redhat Information
No data.
CWE