Log out
Get PRO

Latest

Weak configuration vulnerability in WordPress informational

  • Severity: medium-risk
  • Status: Fixed
  • Publication: June 20, 2012

WordPress versions up to and including 4.8.2 use an insecure password hashing algorithm. This means that if an attacker can get access to the hash values, they can easily figure out what the plain text passwords are. It is possible that changing this algorithm might not work with certain uses of WordPress, like if you are moving your WordPress website from a web host that uses a recent version of PHP to a web host that uses PHP 5.2, which is still being used by some websites.

Detected in:

WordPress fixed vulnerable versions: >= informational <= informational

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)

Wordpress Linkedin Github

Get Started

About

Popular articles