Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2022-28601
HistoryMay 10, 2022 - 8:42 p.m.

CVE-2022-28601

2022-05-1020:42:50
mitre
www.cve.org
4
cve-2022-28601
remote attackers
phone number overwrite

EPSS

0.001

Percentile

40.3%

JSON

A Two-Factor Authentication (2FA) bypass vulnerability in β€œSimple 2FA Plugin for Moodle” by LMS Doctor allows remote attackers to overwrite the phone number used for confirmation via the profile.php file. Therefore, allowing them to bypass the phone verification mechanism.

Related

nvd 1
cve 1
prion 1
nvd
nvd
CVE-2022-28601
2022-05-10 21:15:11
cve
cve
CVE-2022-28601
2022-05-10 21:15:11
prion
prion
Authentication flaw
2022-05-10 21:15:00

EPSS

0.001

Percentile

40.3%

JSON
Related for CVELIST:CVE-2022-28601
nvd1cve1prion1