WordPress bulletproof-security <=.51 multiple vulnerabilities

November 6, 2014 007admin Leave a comment

Posted by Pietro Oliva on Nov 06

Vulnerability title: WordPress bulletproof-security <=.51 multiple
vulnerabilities
Author: Pietro Oliva
CVE: CVE-2014-7958, CVE-2014-7959, CVE-2014-8749
Vendor: AITpro
Product: bulletproof-security
Affected version: bulletproof-security <= .51
Vulnerabilities fixed in version: .51.1

Details:

xss vulnerability (CVE-2014-7958):

POST /wp-content/plugins/bulletproof-security/admin/htaccess/bpsunlock.php
HTTP/1.1…

007 Software

WordPress bulletproof-security <=.51 multiple vulnerabilities

Leave a Reply Cancel reply

Software and Security Information