CVE-2017-5493

Name: Websites susceptible to CVE-2017-5493
Creator: WebTechSurvey

CVE-2017-5493

wp-includes/ms-functions.php in the Multisite WordPress API in WordPress before 4.7.1 does not properly choose random numbers for keys, which makes it easier for remote attackers to bypass intended access restrictions via a crafted (1) site signup or (2) user signup.

We have discovered 414,394 live websites that are affected by CVE-2017-5493.

Run a Free Instant Scan

Affected Software


Product	WordPress
Category	Content Management System
Vulnerable Domains	414,394 live websites (4.99% of WordPress install base)
Vulnerable Versions	from 0 through 4.7.1
Vulnerable Versions Count	310 versions ( 47% of all versions)

Available Reports

Website List

Details

Published - Jan 15, 2017
Updated - Aug 5, 2024

CVE References

Website Distribution by Country

Number of websites using CVE-2017-5493

United States	63,556 websites

Italy	66,769 websites
Germany	30,494 websites
Japan	25,061 websites
Russia	22,724 websites
GB	21,483 websites
Poland	18,793 websites
France	17,698 websites
Netherlands	14,052 websites
Iran	8,182 websites

Website Distribution by TLD

Number of websites using CVE-2017-5493

.com	139,537 websites
.it	43,273 websites
.ru	19,041 websites
.org	14,094 websites
.de	13,840 websites
.pl	13,350 websites
.net	12,928 websites
.co.uk	12,002 websites
.nl	9,007 websites
.fr	6,500 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2017-5493

Top websites that are affected by CVE-2017-5493. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
*****.com	United States	,**
************.org	United States	,**
********.eu	Austria	,**
********************.ru	Russia	,**
********************.com	Cyprus	,**
*****..ca	Canada	,**
**********.com	United States	,*
***************.org	United States	,*
*****.com	Italy	,*
*******.com	United States	,*