WordPress.org

Ready to get started?Download WordPress

Forums

Mail On Update
[resolved] Please update changelog (2 posts)

  1. henrisalo
    Member
    Posted 1 year ago #

    Changelog for 5.2.0 says: "Fixed slightly possible CSFR Bug". It should tell CSRF security vulnerability has been fixed and include references (at least CVE identifier). Here is proof of concept: http://www.openwall.com/lists/oss-security/2013/05/16/8 for CVE-2013-2107. Other references:
    - http://osvdb.org/93452
    - https://github.com/wpscanteam/wpscan/issues/188
    - http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2107 (will be updated)

    http://wordpress.org/extend/plugins/mail-on-update/

  2. kubi23
    Member
    Plugin Author

    Posted 1 year ago #

    Thanks for the notice. Changelog has been updated.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags