CVE-2015-5731
EPSS 14.8%發布日:2015/11/9修改日:2026/5/27
描述
Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack the authentication of administrators for requests that lock a post, and consequently cause a denial of service (editing blockage), via a get-post-lock action.
受影響套件(1)
- Debian/wordpressfrom 0, < 4.2.4+dfsg-1