CVE-2017-5493

HIGH

WordPress <4.7.1 - Info Disclosure

Title source: llm

Description

wp-includes/ms-functions.php in the Multisite WordPress API in WordPress before 4.7.1 does not properly choose random numbers for keys, which makes it easier for remote attackers to bypass intended access restrictions via a crafted (1) site signup or (2) user signup.

References (8)

[Third Party Advisory] https://wpvulndb.com/vulnerabilities/8721

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/95401

[Third Party Advisory] http://www.debian.org/security/2017/dsa-3779

[Release Notes, Vendor Advisory] https://codex.wordpress.org/Version_4.7.1

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2017/01/14/6

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1037591

[Patch] https://github.com/WordPress/WordPress/commit/cea9e2dc62abf777e06b12ec4ad9d1aaa49b29f4

View Patch ZIP pw:eip

[Vendor Advisory] https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/

Scores

CVSS v3 7.5

EPSS 0.0167

EPSS Percentile 82.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-338

Status published

Products (1)

wordpress/wordpress < 4.7

Published Jan 15, 2017

Tracked Since Feb 18, 2026