ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 4.5.2 - BYPASS #3

Product
WordPress
Description
This vulnerability in WordPress 4.5.2 and previous versions allows an attacker to bypass intended access restrictions and remove a category attribute from a post via unspecified vectors. Related records: http://db.threatpress.com/vulnerability/wordpress/wordpress-4-5-2-bypass http://db.threatpress.com/vulnerability/wordpress/wordpress-4-5-2-bypass-1 http://db.threatpress.com/vulnerability/wordpress/wordpress-4-5-2-bypass-3
Solution
Update WordPress.
Classification
Type BYPASS
References
CVE Mitre
CVE
Name CVE-2016-5837
Versions
Affected In <= 4.5.2
Fixed In 4.5.3
Disclosure date
2016-06-23