ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <=4.0.1 - Denial of Service Attacks

Product
WordPress
Description
WordPress 4.0.1 is prone to a denial of service vulnerability that allows an attacker to send specially crafted requests. These requests resulting in CPU and memory exhaustion and in that way the site becomes unavailable.
Solution
Update WordPress.
Classification
Type Unknown
References
CVE
Name CVE-2014-9034
Versions
Affected In <=4.0.1
Fixed In 4.0.2
Disclosure date
2014-12-01
Credits
Javer Nieto and Andres Rojas
Submitter
ThreatPress