CVE-2014-5034
Published
CVSS v3
N/A
CVSS v2
6.8
MEDIUM
Affected
2
PROJECTS
Description
Cross-site request forgery (CSRF) vulnerability in the Brute Force Login Protection module 1.3 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that have unknown impact via a crafted request to the brute-force-login-protection page to wp-admin/options-general.php.
Wordpress Sploit Framework was developed for the purpose to provide a framework which creates proof of concept when discovering vulnerability in Wordpress core and Wordpress plugin.
GitHubGitHub