4 matches found
CVE-2023-34025
Cross-Site Request Forgery CSRF vulnerability in LWS LWS Hide Login plugin = 2.1.6 versions...
CVE-2023-34025
Cross-Site Request Forgery CSRF vulnerability in LWS LWS Hide Login plugin = 2.1.6 versions...
CVE-2023-34025
CVE-2023-34025 affects the WordPress plugin LWS Hide Login (versions ≤ 2.1.6). It is a CSRF vulnerability with CVSSv3.1 base score 8.8 (HIGH) and an attack vector of network, requiring user interaction. Remediation: upgrade to version 2.1.7 or later (patch released) to fix the issue. Exploitation...
WordPress LWS Hide Login Plugin <= 2.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software LWS Hide Login Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-34025 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 568d5d97d18d Credits konagash Required...