CVE-2007-0109

CVE-2007-0109 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.

Learn more about our Wordpress Pen Testing.