CVE-2020-36564

Due to improper validation of caller input, validation is silently disabled if the provided expected token is malformed, causing any user supplied token to be considered valid...

CVE-2023-2987

The Wordapp plugin for WordPress is vulnerable to authorization bypass due to an use of insufficiently unique cryptographic signature on the 'wapdxopconfigset' function in versions up to, and including, 1.5.0. This makes it possible for unauthenticated attackers to the plugin to change the...

CVE-2023-2987 Wordapp <= 1.6.0 - Authorization Bypass through Use of Insufficiently Unique Cryptographic Signature

The Wordapp plugin for WordPress is vulnerable to authorization bypass due to an use of insufficiently unique cryptographic signature on the 'wapdxopconfigset' function in versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to the plugin to change the...

PT-2023-22457 · WordPress · Wordapp

Name of the Vulnerable Software and Affected Versions: Wordapp plugin for WordPress versions up to, and including, 1.5.0 Description: The issue is related to an authorization bypass due to the use of an insufficiently unique cryptographic signature on the wa pdx op config set function. This allow...

Compositing Engine machine stuck with error "Lifetime validation failed. The token is expired"

Offload compositing getting stuck with error "Lifetime validation failed. The token is expired" and the compositing engine machine gets deleted after 20 mins. ELM fails with error: The compositing engine failed to initialize after "00:20:00". Screenshot:...