CVE-2017-9064

Name: Websites susceptible to CVE-2017-9064
Creator: WebTechSurvey

CVE-2017-9064

In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials.

We have discovered 427,032 live websites that are affected by CVE-2017-9064.

Run a Free Instant Scan

Affected Software


Product	WordPress
Category	Content Management System
Vulnerable Domains	427,032 live websites (4.91% of WordPress install base)
Vulnerable Versions	from 0 through 4.7.5
Vulnerable Versions Count	314 versions ( 48% of all versions)

Available Reports

Website List

Details

Published - May 18, 2017
Updated - Aug 5, 2024

CVE References

Website Distribution by Country

Number of websites using CVE-2017-9064

United States	72,696 websites

Italy	64,970 websites
Germany	30,875 websites
Japan	27,987 websites
Russia	22,601 websites
GB	21,374 websites
France	19,220 websites
Poland	17,904 websites
Netherlands	14,227 websites
Australia	9,922 websites

Website Distribution by TLD

Number of websites using CVE-2017-9064

.com	150,098 websites
.it	42,220 websites
.ru	18,966 websites
.de	15,353 websites
.org	15,200 websites
.net	14,073 websites
.pl	12,800 websites
.co.uk	11,969 websites
.nl	10,331 websites
.com.au	7,468 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2017-9064

Top websites that are affected by CVE-2017-9064. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
*****.com	United States	,**
************.org	United States	,**
********.eu	Austria	,**
********************.ru	Russia	,**
****************.com	United States	,**
*****..ca	Canada	,**
**********.com	United States	,*
***************.org	United States	,*
********.gr	Greece	,*
*********..za	South Africa	,*