ThreatPress

WordPress Vulnerabilities Database

Back

WordPress blogVault Plugin <= 1.08 - BYPASS

Product
BlogVault
Description
This plugin is prone to a missing account empty secret key generation vulnerability.
Solution
Update the plugin to v1.0.9
Classification
Type BYPASS
References
Changelog
CVE
Name CVE-N/A
Versions
Affected In <= 1.08
Fixed In 1.0.9
Disclosure date
2014-08-01