Vulnerabilities

CVE-2015-0895

by Fred · 06/03/2015

Cross-site request forgery (CSRF) vulnerability in the All In One WP Security & Firewall plugin before 3.9.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that delete logs of 404 (aka Not Found) HTTP status codes.

Date published : 2015-03-06

https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/changelog/

http://jvn.jp/en/jp/JVN87204433/index.html

Similar

Tags: Cybersecurity Alert