Cross-site request forgery (CSRF) vulnerability in the All In One WP Security & Firewall plugin prior to 3.9.0 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that delete logs of 404 (aka Not Found) HTTP status codes.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tips and tricks hq all in one wordpress security and firewall |