2 matches found
CVE-2022-41839 WordPress LoginPress plugin <= 1.6.2 - Broken Access Control vulnerability
Broken Access Control vulnerability in WordPress LoginPress plugin = 1.6.2 on WordPress leading to unauth. changing of Opt-In or Opt-Out tracking settings...
CVE-2022-41839
CVE-2022-41839 affects the WordPress LoginPress plugin (versions ≤ 1.6.2). The issue is a Broken Access Control that allows unauthorized changes to Opt-In/Opt-Out tracking settings. The published sources consistently describe unauthenticated modification of tracking preferences as the impact. Rem...