cve/CVE-2017-9064.md at 32646c20e71810932fbd5e08aba28eaca6211a4d

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-14 20:08:44 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

1.0 KiB

Raw Blame History

CVE-2017-9064

Description

In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Afetter618/WordPress-PenTest
https://github.com/CeCe2018/Codepath
https://github.com/CeCe2018/Codepath-Week-7-Alternative-Assignment-Essay
https://github.com/Scatter-Security/wordpressure
https://github.com/Tanvi20/Week-7-Alternative-Assignment-wp-cve
https://github.com/harrystaley/CSCI4349_Week9_Honeypot
https://github.com/harrystaley/TAMUSA_CSCI4349_Week9_Honeypot

1.0 KiB Raw Blame History

CVE-2017-9064

Description

POC

Reference

Github

1.0 KiB

Raw Blame History