PT-2023-20069 · WordPress · Feather Login Page

Name of the Vulnerable Software and Affected Versions: Feather Login Page plugin for WordPress versions 1.0.7 through 1.1.1 Description: The issue allows authenticated attackers with subscriber-level permissions and above to access login links, potentially leading to privilege escalation, due to ...

CVE-2022-40315

CVE-2022-40315 corresponds to a limited SQL injection vulnerability in Moodle’s admin page that lists users (browse list of users). The issue is described with a high severity (CVSS 3.1 base score 9.8, critical) and is relevant to Moodle installations where the admin interface exposes this browse...