Description

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Remediation

References

CVE-2012-3384

Related Vulnerabilities

WordPress Plugin BetterOptin Cross-Site Scripting (2.0.2)

ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-1583)

MySQL CVE-2019-2587 Vulnerability (CVE-2019-2587)

OpenVPN AS Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2020-36382)

WebLogic CVE-2020-14622 Vulnerability (CVE-2020-14622)

Severity

Medium

Classification

CVE-2012-3384 CWE-352

Tags

Missing Update Known Vulnerabilities