Lucene search

CVE-2024-6125

🗓️ 19 Jun 2024 02:09:15Reported by [email protected]Type

The WordPress phone number login plugin allows unauthorized password resets due to weak reset code

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2024-6125	19 Jun 202402:15	–	cve
Patchstack	WordPress Login with phone number Plugin <= 1.7.34 is vulnerable to Broken Access Control	18 Jun 202400:00	–	patchstack
Cvelist	CVE-2024-6125 Login with phone number <= 1.7.34 - Insecure Password Reset Mechanism	19 Jun 202402:01	–	cvelist
RedhatCVE	CVE-2024-6125	5 Feb 202502:59	–	redhatcve
Vulnrichment	CVE-2024-6125 Login with phone number <= 1.7.34 - Insecure Password Reset Mechanism	19 Jun 202402:01	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024)	27 Jun 202415:00	–	wordfence

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/301a67a5-226c-413a-9198-66747d1b1fd3
plugins	www.plugins.trac.wordpress.org/changeset/3104085/login-with-phone-number

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jun 2024 02:15Current

CVSS38.1

EPSS0.01154