CVE-2014-3882
Cross-site request forgery (CSRF) vulnerability in the Login rebuilder plugin before 1.2.0 for WordPress allows remote attackers to hijack the authentication of arbitrary users.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0019 (0.2%)
Percentil: 40.2%
EPSS: 2026-05-06
Afecta
12net:login_rebuilderDescripción técnica
Cross-site request forgery (CSRF) vulnerability in the Login rebuilder plugin before 1.2.0 for WordPress allows remote attackers to hijack the authentication of arbitrary users.
Publicada: 25/6/2014, 11:19:22
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://12net.jp/news/n20140623_01.html
- http://jvn.jp/en/jp/JVN05329568/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2014-000062
- http://wordpress.org/plugins/login-rebuilder/changelog/
- http://12net.jp/news/n20140623_01.html
- http://jvn.jp/en/jp/JVN05329568/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2014-000062
- http://wordpress.org/plugins/login-rebuilder/changelog/