Description
WordPress is prone to a clickjacking vulnerability. Successful exploits will allow an attacker to compromise the affected application or obtain sensitive information; other attacks are also possible. WordPress versions prior to 3.1.3 are vulnerable.
Remediation
Update to WordPress version 3.1.3 or latest
References
Related Vulnerabilities
Opencart Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-3990)
WordPress Plugin Groundhogg-Marketing Automation & CRM for WordPress SQL Injection (1.3.11.13)
WordPress Plugin AmazonFeed Cross-Site Scripting (2.1)
Undertow Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-3859)