Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:51 a.m.11 views

CVE-2023-2781

The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication bypass via authenticateuserbyemail in versions up to, and including, 3.5.0. This is due to a random token generation weakness in the resendverificationemail function. This allows unauthenticated...

9.8CVSS7.2AI score0.01172EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/06/22 12:0 a.m.15 views

WordPress User Email Verification for WooCommerce Plugin <= 3.5.0 is vulnerable to Broken Authentication

Software User Email Verification for WooCommerce Type Plugin Vulnerable versions = 3.5.0 Fixed in N/A OWASP Top 10 A2: Broken Authentication Classification Broken Authentication CVE CVE-2023-2781 Patch priority Low CVSS severity Low 9.8 Developer Claim ownership PSID 9f959445cfce Credits Lana Cod...

9.8CVSS6.6AI score0.01172EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/06/03 12:15 a.m.5 views

CVE-2023-2781

The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication bypass via authenticateuserbyemail in versions up to, and including, 3.5.0. This is due to a random token generation weakness in the resendverificationemail function. This allows unauthenticated...

9.8CVSS5.7AI score0.01172EPSS
Exploits0References4
CVE
CVE
added 2023/06/02 11:37 p.m.71 views

CVE-2023-2781

CVE-2023-2781 affects the WordPress plugin User Email Verification for WooCommerce . The vulnerability is an authentication bypass caused by a weak token generation in the resend_verification_email function, enabling unauthenticated attackers to impersonate users and trigger email verification fo...

9.8CVSS9.6AI score0.01172EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder