Back to search
CVE-2019-17675
Published: Oct 17, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://wpvulndb.com/vulnerabilities/9913
x_refsource_MISC
https://core.trac.wordpress.org/changeset/46477
x_refsource_MISC
[debian-lts-announce] 20191105 [SECURITY] [DLA 1980-1] wordpress security update
mailing-list
x_refsource_MLIST
20200108 [SECURITY] [DSA 4599-1] wordpress security update
mailing-list
x_refsource_BUGTRAQ
DSA-4599
vendor-advisory
x_refsource_DEBIAN
DSA-4677
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now