Is Your Website Hackable?

70% are. Detect and action with Acunetix

Black & Grey Box Scanning (AcuSensor)

Pinpoints hackable code & reduces false positives

Download Online Scan

Check for SQL injection, XSS

and 3000 other vulnerabilities

Download Online Scan

Integrated Vulnerability Management

Prioritise & Manage security threats

Download Online Scan

Free Network Security Scan

Check for vulnerabilities in your network

Download Online Scan

WordPress Plugin Acunetix WP Security Cross-Site Request Forgery (4.0.4)

Description

WordPress Plugin Acunetix WP Security is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Acunetix WP Security version 4.0.4 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.0.5 or latest

References

http://packetstormsecurity.com/files/125218/WordPress-Acunetix-WP-Security-Make-Backup-4.0.3-CSRF.html

Severity

Classification