Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-8772
HistoryFeb 06, 2020 - 4:27 p.m.

CVE-2020-8772

2020-02-0616:27:31
mitre
www.cve.org
1

9.5 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON

The InfiniteWP Client plugin before 1.9.4.5 for WordPress has a missing authorization check in iwp_mmb_set_request in init.php. Any attacker who knows the username of an administrator can log in.

Related

wpvulndb 1
prion 1
nvd 1
wpexploit 1
openvas 1
cve 1
nuclei 1
wpvulndb
wpvulndb
InfiniteWP Client < 1.9.4.5 - Authentication Bypass
2020-01-14 00:00:00
prion
prion
Authorization
2020-02-06 17:15:00
nvd
nvd
CVE-2020-8772
2020-02-06 17:15:15
wpexploit
wpexploit
InfiniteWP Client < 1.9.4.5 - Authentication Bypass
2020-01-14 00:00:00
openvas
openvas
WordPress InfiniteWP Client Plugin < 1.9.4.5 Authentication Bypass Vulnerability
2023-08-22 00:00:00
cve
cve
CVE-2020-8772
2020-02-06 17:15:15
nuclei
nuclei
WordPress InfiniteWP <1.9.4.5 - Authorization Bypass
2022-08-05 15:29:56

9.5 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON
Related for CVELIST:CVE-2020-8772
wpvulndb1prion1nvd1wpexploit1openvas1cve1nuclei1