Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/02/08 12:0 a.m.7 views

WordPress plugin JAY Login & Register 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.8CVSS6AI score0.0031EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/16 5:29 p.m.10 views

WordPress JAY Login & Register plugin <= 2.4.01 - Authentication Bypass via Cookie vulnerability

Authentication Bypass via Cookie vulnerability discovered by kr0d in WordPress Plugin JAY Login & Register versions = 2.4.01...

9.8CVSS6.7AI score0.00692EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/28 3:27 a.m.3 views

CVE-2025-13737 Nextend Social Login and Register <= 3.1.21 - Cross-Site Request Forgery to Unlink User Social Login

The Nextend Social Login and Register plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.21. This is due to missing or incorrect nonce validation on the 'unlinkUser' function. This makes it possible for unauthenticated attackers to unlink th...

4.3CVSS4.9AI score0.00129EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/28 12:0 a.m.4 views

WordPress plugin Nextend Social Login and Register 跨站请求伪造漏洞

WordPress Nextend Social Login and Register plugin is a free WordPress plugin designed to simplify the registration and login process for website users. A cross-site request forgery vulnerability exists in the WordPress Nextend Social Login and Register plugin, which arises from a web application...

4.3CVSS6.7AI score0.00129EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/19 12:0 a.m.5 views

WordPress plugin WP Login and Register using JWT 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS6.5AI score0.00175EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/02 12:0 a.m.3 views

WordPress plugin WP Front-end login and register 跨站脚本漏洞

WP Front-end login and register is a WordPress front-end account management plugin, mainly used in the front-end of the site to achieve user registration, login and password change functions, without having to jump to the WordPress background. WordPress WP Front-end login and register has a...

6.1CVSS6.2AI score0.00207EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/23 12:0 a.m.12 views

WordPress plugin WordPress Social Login and Register 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin WordPress Social Login and...

8.8CVSS8.1AI score0.00256EPSS
Exploits0References2
Rows per page
Query Builder