CVE-2017-8295-WordPress-4.7.4---Unauthorized-Password-Reset

Information on the vulnerability

Wordpress has a password reset feature that contains a vulnerability which

might in some cases allow attackers to get hold of the password reset link

without previous authentication.

Such attack could lead to an attacker gaining unauthorised access to a

victim's WordPress account.