The wp_create_nonce function in wp-includes/pluggable.php in WordPress 3.3.1 and earlier associates a nonce with a user account instead of a user session, which might make it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks on specific actions and objects by sniffing the network, as demonstrated by attacks against the wp-admin/admin-ajax.php and wp-admin/user-new.php scripts. NOTE: the vendor reportedly disputes the significance of this issue because wp_create_nonce operates as intended, even if it is arguably inconsistent with certain CSRF protection details advocated by external organizations
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:10
Type | Values Removed | Values Added |
---|---|---|
Summary | The wp_create_nonce function in wp-includes/pluggable.php in WordPress 3.3.1 and earlier associates a nonce with a user account instead of a user session, which might make it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks on specific actions and objects by sniffing the network, as demonstrated by attacks against the wp-admin/admin-ajax.php and wp-admin/user-new.php scripts. NOTE: the vendor reportedly disputes the significance of this issue because wp_create_nonce operates as intended, even if it is arguably inconsistent with certain CSRF protection details advocated by external organizations |
Information
Published : 2012-05-03 20:55
Updated : 2024-04-11 00:48
NVD link : CVE-2012-1936
Mitre link : CVE-2012-1936
CVE.ORG link : CVE-2012-1936
JSON object : View
Products Affected
wordpress
- wordpress
CWE
CWE-352
Cross-Site Request Forgery (CSRF)