Description
wp-includes/class-phpass.php in WordPress 3.5.1, when a password-protected post exists, allows remote attackers to cause a denial of service (CPU consumption) via a crafted value of a certain wp-postpass cookie.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2007-0282)
PrestaShop CVE-2008-5791 Vulnerability (CVE-2008-5791)
Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-39275)
WordPress 5.4.x Multiple Vulnerabilities (5.4 - 5.4.10)
WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60)