Web application abuses : WordPress <= 4.8.2 Weak Password Hash Algorithm

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.113048

Category: Web application abuses

Title: WordPress <= 4.8.2 Weak Password Hash Algorithm

Summary: WordPress uses a weak MD5 password hashing algorithm.

Description: Summary:
WordPress uses a weak MD5 password hashing algorithm.

Vulnerability Impact:
The weak algorithm would allow an attacker with access to
password hashes to more easily bruteforce those to acquire the cleartext passwords.

Affected Software/OS:
WordPress through version 4.8.2.

Solution:
Update to version 4.8.3 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-6707
https://core.trac.wordpress.org/ticket/21022

Copyright Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.113048
Category:	Web application abuses
Title:	WordPress <= 4.8.2 Weak Password Hash Algorithm
Summary:	WordPress uses a weak MD5 password hashing algorithm.
Description:	Summary: WordPress uses a weak MD5 password hashing algorithm. Vulnerability Impact: The weak algorithm would allow an attacker with access to password hashes to more easily bruteforce those to acquire the cleartext passwords. Affected Software/OS: WordPress through version 4.8.2. Solution: Update to version 4.8.3 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-6707 https://core.trac.wordpress.org/ticket/21022
Copyright	Copyright (C) 2017 Greenbone AG