1
Candidate: CVE-2014-6412
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6412
5
http://seclists.org/fulldisclosure/2015/Feb/42
7
WordPress before 4.4 makes it easier for remote attackers to predict
8
password-recovery tokens via a brute-force approach.
11
sbeattie> affects Windows only
18
upstream: https://core.trac.wordpress.org/attachment/ticket/28633/28633.3.patch
19
upstream_wordpress: not-affected (Windows only)
20
precise_wordpress: not-affected (Windows only)
21
trusty_wordpress: not-affected (Windows only)
22
vivid_wordpress: not-affected (Windows only)
23
devel_wordpress: not-affected (Windows only)