Wordpress 3.4 - 3.5.1 /wp-admin/users.php Malformed s Parameter Path Disclosure

Affects WordPresses

fixed in version 3.5.2
fixed in version 3.5.2
fixed in version 3.5.2
fixed in version 3.5.2
fixed in version 3.5.2

References

URL http://seclists.org/fulldisclosure/2013/Jul/70

Classification

Type FPD
OWASP Top 10 A6: Security Misconfiguration
CWE CWE-200

Miscellaneous

Views 8567
Verified No
WPVDB ID 5978

Timeline

Publicly Published 2014-08-01 (about 5 years ago)
Added 2014-08-01 (about 5 years ago)
Last Updated 2018-08-29 (12 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin