W3 Total Cache <= 0.9.4 - Cross-Site Request Forgery (CSRF)Sign up to our free email alerts service for instant vulnerability notifications!
The plugin does not validate the '_wpnonce' anti-CSRF token. This issue can be used to perform many actions. The most significant action with the biggest impact is the ability to redirect users to malicious websites. Functionality exists where specific user agent strings can be configured to be redirected to other destinations. By abusing this feature with CSRF it is possible to add a user agent string that will redirect users to a malicious site.
fixed in version 0.9.4.1
|OWASP Top 10||A8: Cross-Site Request Forgery (CSRF)|
|Added||2014-12-12 (almost 3 years ago)|
|Last Updated||2015-05-15 (over 2 years ago)|
Copyright & License
|Copyright||All data and resources contained within this page and this web site is Copyright © The WPScan Team.|
|License||Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.|