0.001 Low
EPSS
Percentile
49.7%
The wpo365-login plugin before v11.7 for WordPress allows use of a symmetric algorithm to decrypt a JWT token. This leads to authentication bypass.
plugins.trac.wordpress.org/changeset/2388992/
wordpress.org/plugins/wpo365-login/
wpvulndb.com/vulnerabilities/10418
www.wpo365.com/change-log/