Lucene search
K

6 matches found

redhatcve
redhatcve
added 2025/05/23 1:48 a.m.20 views

CVE-2023-2546

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpusallowusertoadminbarmenu' function with the 'wpuswhoswitch' cookie value. This makes it possible for authenticated...

8.8CVSS6.8AI score0.01357EPSS
Exploits1References1
osv
osv
added 2023/06/06 2:15 a.m.16 views

CVE-2023-2546

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpusallowusertoadminbarmenu' function with the 'wpuswhoswitch' cookie value. This makes it possible for authenticated...

8.8CVSS7.3AI score0.01357EPSS
Exploits1References4
nvd
nvd
added 2023/06/06 2:15 a.m.54 views

CVE-2023-2546

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpusallowusertoadminbarmenu' function with the 'wpuswhoswitch' cookie value. This makes it possible for authenticated...

8.8CVSS8.7AI score0.01357EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2023/06/06 1:55 a.m.7 views

CVE-2023-2546 WP User Switch <= 1.0.2 - Authenticated (Subscriber+) Authentication Bypass via Cookie

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpusallowusertoadminbarmenu' function with the 'wpuswhoswitch' cookie value. This makes it possible for authenticated...

8.8CVSS7.2AI score0.01357EPSS
Exploits1References4
cvelist
cvelist
added 2023/06/06 1:55 a.m.57 views

CVE-2023-2546 WP User Switch <= 1.0.2 - Authenticated (Subscriber+) Authentication Bypass via Cookie

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.2. This is due to incorrect authentication checking in the 'wpusallowusertoadminbarmenu' function with the 'wpuswhoswitch' cookie value. This makes it possible for authenticated...

8.8CVSS8.8AI score0.01357EPSS
Exploits1References4
patchstack
patchstack
added 2023/06/04 12:0 a.m.16 views

WordPress WP User Switch Plugin <= 1.0.2 is vulnerable to Bypass Vulnerability

Software WP User Switch Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A2: Broken Authentication Classification Bypass Vulnerability CVE CVE-2023-2546 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID d69f4769545f Credits István Márton Required privile...

8.8CVSS6.5AI score0.01357EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder