← back
CVE-2016-6897

CVE-2016-6897

EPSS 28.3%
Cross-site request forgery (CSRF) vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 allows remote attackers to hijack the authentication of subscribers for /dev/random read operations by leveraging a late call to the check_ajax_referer function, a related issue to CVE-2016-6896.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/40288/unverifiedexploitdbwww.exploit-db.com/exploits/40288unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/WordPress/WordPress/commit/8c82515ab62b88fb32d01c9778f0204b296f3568https://sumofpwn.nl/advisory/2016/path_traversal_vulnerability_in_wordpress_core_ajax_handlers.htmlhttps://wpvulndb.com/vulnerabilities/8606https://www.exploit-db.com/exploits/40288/http://www.openwall.com/lists/oss-security/2016/08/20/1http://www.securityfocus.com/bid/92572http://www.securitytracker.com/id/1036683