ThreatPress

WordPress Vulnerabilities Database

Back

WordPress 3.3.1 - Multiple CSRF Vulnerabilities

Product
WordPress
Description
WordPress version 3.3.1 is prone to a multiple cross site request forgery vulnerabilities. These vulnerabilities are caused by a security flaw in anti-CSRF token (_wpnonce, _wpnonce_create-user, _ajax_nonce, _wpnonce-custom-background-upload, _wpnonce-custom-header-upload) generation. Multiple CSRF allow an attacker to change Site Address, when an authenticated user/admin browses a special crafted web page, change post title, add administrators/users, delete administrators/users, change site title, change administrator's email, change Wordpress Address, also, approve and unapprove comment, delete comment, change background image, insert custom header image.
Solution
Update WordPress.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Exploit-DB
CVE
Name CVE-2012-1936
Versions
Affected In 3.3.1
Fixed In 3.3.2
Disclosure date
2012-04-27
Credits
Ivano Binetti