Vulnerabilities > Tips AND Tricks HQ > ALL IN ONE Wordpress Security AND Firewall > 3.8.9

DATE	CVE	VULNERABILITY TITLE	RISK
2015-03-07	CVE-2015-0895	Cross-Site Request Forgery (CSRF) vulnerability in ONE Wordpress Security and Firewall 3.8.2/3.8.7/3.8.9 Cross-site request forgery (CSRF) vulnerability in the All In One WP Security & Firewall plugin before 3.9.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that delete logs of 404 (aka Not Found) HTTP status codes. network tips-and-tricks-hq CWE-352	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.