wp-includes/class-phpass.php in WordPress 3.5.1, when a password-protected post exists, allows remote attackers to cause a denial of service (CPU consumption) via a crafted value of a certain wp-postpass cookie.
Max CVSS
4.3
EPSS Score
1.98%
Published
2013-06-21
Updated
2013-08-22
1 vulnerabilities found