WordPress 4.8.1 still vulnerable to Host Header Attack! - WordPress - Fundamenta...

6 years ago

source link: https://learnwebdevelopment.review/article/wordpress-481-still-vulnerable-to-host-header-attack
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

CVE 2017 8295 discovered by Dawid Golunski, Medium/High vulnerability still not fixed in 4.8.1. This issue has been reported to WordPress security team multiple times with the first report sent back in July 2016. It was reported both directly via security contact email, as well as via HackerOne website.

Recommend

“吃鸡”在国内的火爆，影响了完美、腾讯、网易？
科大讯飞真实困境：客户变对手，技术优势渐消，盈利型赛道未确定
苹果iOS 11来了，要系统流畅，还是体验新功能，大家来做个选择！
腾讯创始人之一陈一丹颁出全球最大教育奖，每人奖3000万港元_IT新闻
兰州、泉州率先“放松”网约车准入门槛搅动出行市场格局
花钱升级软件就能用上新硬件功能特斯拉模式将指引未来
新版Siri亮相：iOS整合更深入但没看到智商有显著提升
法拉第未来承认员工曾参与乐视电动车部分设计
中国掀起全面屏手机发布销售狂潮千元全面屏也将问世
GitHub - GoogleChrome/puppeteer: Headless Chrome Node API

About Joyk

Aggregate valuable and interesting links.
Joyk means Joy of geeK