WordPress W3 Total Cache 0.9.4.1 Race Condition
Posted by deepcore on November 12, 2016 – 1:59 am
An information disclosure vulnerability was found in the W3 Total Cache plugin. This issue allows an attacker to hijack sensitive information, such as the administrator’s session cookie. Exploiting the vulnerability is possible during a short period of time when an administrator submits the support form. Version 0.9.4.1 is affected.
Post a reply
You must be logged in to post a comment.