Description
WordPress is prone to a clickjacking vulnerability. Successful exploits will allow an attacker to compromise the affected application or obtain sensitive information; other attacks are also possible. WordPress versions prior to 3.1.3 are vulnerable.
Remediation
Update to WordPress version 3.1.3 or latest
References
Related Vulnerabilities
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0788)
WordPress Plugin WP Private Content Plus Cross-Site Request Forgery (3.1)
WordPress Plugin Podlove Podcast Publisher SQL Injection (3.5.5)
WordPress Plugin eCommerce Product Catalog for WordPress Cross-Site Request Forgery (2.9.43)
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2022-2048)