WordPress Vulnerabilities

WordPress 3.0-4.7 - Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Affects WordPress

3.8.1

Fixed in version 3.8.17

3.8

Fixed in version 3.8.17

3.7.1

Fixed in version 3.7.17

3.6

Fixed in version 4.7.1

3.5.2

Fixed in version 4.7.1

3.5.1

Fixed in version 4.7.1

3.5

Fixed in version 4.7.1

3.4.2

Fixed in version 4.7.1

3.4.1

Fixed in version 4.7.1

3.4

Fixed in version 4.7.1

References

CVE

CVE-2017-5493

URL

https://github.com/WordPress/WordPress/commit/cea9e2dc62abf777e06b12ec4ad9d1aaa49b29f4

URL

https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/

Classification

Type

UNKNOWN

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

ethicalhack3r

Verified

WPVDB ID

3e355742-6069-4d5d-9676-613df46e8c54

Timeline

Publicly Published

2017-01-11 (about 5 years ago)

Added

2017-01-12 (about 5 years ago)

Last Updated

2020-09-22 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin