CVE-2026-7617

The CVE affects the WordPress plugin Secufor_OAuth (versions up to and including 1.0.7). The vulnerability stems from insufficient authorization checks when performing an action, allowing unauthenticated attackers to disconnect the WordPress site from its linked Secufor account by clearing the pl...

WordPress Secufor_OAuth plugin <= 1.0.7 - Missing Authorization to Unauthenticated Account Logout vulnerability

Missing Authorization to Unauthenticated Account Logout vulnerability discovered by SHIVAM KUMAR in WordPress Plugin SecuforOAuth versions = 1.0.7...