Lucene search
CVE-2024-6328
The MStore plugin in WordPress allows authentication bypass via 'phone' parameter due to insufficient verification, leading to potential unauthorized access to user accounts
Show more
| Reporter | Title | Published | Views | Family All 5 |
|---|---|---|---|---|
 | CVE-2024-6328 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.14.7 - Authentication Bypass | 12 Jul 202410:59 | – | vulnrichment |
 | WordPress MStore API Plugin <= 4.14.7 is vulnerable to Broken Authentication | 12 Jul 202400:00 | – | patchstack |
 | CVE-2024-6328 | 12 Jul 202411:15 | – | nvd |
 | CVE-2024-6328 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.14.7 - Authentication Bypass | 12 Jul 202410:59 | – | cvelist |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (July 8, 2024 to July 14, 2024) | 18 Jul 202415:33 | – | wordfence |
Node
[
{
"vendor": "inspireui",
"product": "MStore API – Create Native Android & iOS Apps On The Cloud",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "4.14.7",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo12 Jul 2024 11:15Current
9.2High risk
Vulners AI Score9.2
CVSS39.8
EPSS0.02135
SSVC