CVE-2007-6013

CRITICAL

WordPress 1.5-2.3.1 - Authentication Bypass via MD5 Hash Reuse

Title source: llm
STIX 2.1

Description

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass authentication by obtaining the MD5 hash from the user database, then generating the authentication cookie from that hash.

References (13)

Core 13
Core References
Exploit, Issue Tracking x_refsource_confirm
http://trac.wordpress.org/ticket/5367
Broken Link third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3375
Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/483927/100/0/threaded
Broken Link, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3941
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/38578
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28310
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018980
Broken Link vdb-entry x_refsource_osvdb
http://osvdb.org/40801
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27714

Scores

CVSS v3 9.8
EPSS 0.0168
EPSS Percentile 82.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-327
Status published
Products (3)
fedoraproject/fedora 7
fedoraproject/fedora 8
wordpress/wordpress 1.5 - 2.3.1
Published Nov 19, 2007
Tracked Since Feb 18, 2026