oss-sec mailing list archives

Re: CVE Request for WP Fastest Cache plugin

From: cve-assign () mitre org
Date: Tue, 26 May 2015 15:21:20 -0400 (EDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CSRF vulnerability was found in WP Fastest Cache 0.8.3.4 plugin.

The vuln is found in admin.php:

$this->saveOption();
$this->deleteCache();
$this->deleteCssAndJsCache();
$this->addCacheTimeout();


Use CVE-2015-4089.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJVZMdTAAoJEKllVAevmvms0mcIAIQ3YiRYDVzMQ4yRzaVcJUjf
VsH+cPTThrOU8OOLPsnYccFeyrBciiz4XUtX4AQX2tIF1DCK0+QL+UB32pdYnLLl
zwHLMOS2dpT7tsRoIkVYDb9cZxFCbZ4FCv5RLlaj2nHo57YyhVrNUmqsaNzmfJlb
Wd6Tot38eiMjFJnQxyUwAVHGwh5vJkZeJSqc8jauLJIZZn9qa8NcuB51BtZqiQ9/
B1Z1vi1HJpMqvrqeyA3cDGCF5zA2oBNbPfLYjTKfTbEC2FKy8NjEJYYmR9s4Jc87
AJ26GrIX41skoJMnnxvvMBCABE2x5z3KEOWsJmS0xzJehJHOppMZ/UtKYwdH81w=
=taMN
-----END PGP SIGNATURE-----

Current thread:

CVE Request for WP Fastest Cache plugin 0pc0deFR (May 23)
- Re: CVE Request for WP Fastest Cache plugin cve-assign (May 26)