EPSS
Percentile
58.8%
WordPress is vulnerable to collision attacks. It uses a weak MD-5 based password hashing algorithm, making it easier for attackers to obtain a valid password hash.
MD-5
core.trac.wordpress.org/attachment/ticket/21022/21022.3.diff
core.trac.wordpress.org/ticket/21022
github.com/MedReleaf/wordpress/blob/master/wp-includes/pluggable.php#L1742