2018-04-12 21:00:00
mitre
PUBLISHED
WordPress before 4.4 makes it easier for remote attackers to predict password-recovery tokens via a brute-force approach.