Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2023-4800
HistoryOct 16, 2023 - 7:39 p.m.

CVE-2023-4800 DoLogin Security < 3.7.1 - Subscriber+ IP Address leak

2023-10-1619:39:19
WPScan
www.cve.org
2
cve-2023-4800
dologin security
wordpress
widget
failed logins

EPSS

0.001

Percentile

21.4%

JSON

The DoLogin Security WordPress plugin before 3.7.1 does not restrict the access of a widget that shows the IPs of failed logins to low privileged users.

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "DoLogin Security",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "3.7.1"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

Related

cve 1
nvd 1
wpexploit 1
wpvulndb 1
prion 1
cve
cve
CVE-2023-4800
2023-10-16 20:15:16
nvd
nvd
CVE-2023-4800
2023-10-16 20:15:16
wpexploit
wpexploit
DoLogin Security < 3.7.1 - Subscriber+ IP Address leak
2023-09-21 00:00:00
wpvulndb
wpvulndb
DoLogin Security < 3.7.1 - Subscriber+ IP Address leak
2023-09-21 00:00:00
prion
prion
Code injection
2023-10-16 20:15:00

EPSS

0.001

Percentile

21.4%

JSON
Related for CVELIST:CVE-2023-4800
cve1nvd1wpexploit1wpvulndb1prion1