Lucene search
K

6 matches found

VulnCheck KEV
VulnCheck KEV
added 2023/12/18 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-2982

The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This...

9.8CVSS7.4AI score0.46242EPSS
Exploits4References1
GithubExploit
GithubExploit
added 2023/06/29 2:21 p.m.691 views

Exploit for CVE-2023-2982

CVE-2023-2982 WordPress Social Login and Register Discord, Go...

9.8CVSS9.8AI score0.46242EPSS
Exploits4
The Hacker News
The Hacker News
added 2023/06/29 7:24 a.m.53 views

Critical Security Flaw in Social Login Plugin for WordPress Exposes Users' Accounts

A critical security flaw has been disclosed in miniOrange's Social Login and Register plugin for WordPress that could enable a malicious actor to log in as any user-provided information about email address is already known. Tracked as CVE-2023-2982 CVSS score: 9.8, the authentication bypass flaw...

7.2AI score0.46242EPSS
Exploits6
ATTACKERKB
ATTACKERKB
added 2023/06/29 2:15 a.m.2 views

CVE-2023-2982

The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes...

9.8CVSS7.4AI score0.46242EPSS
Exploits4References7
CVE
CVE
added 2023/06/29 1:56 a.m.183 views

CVE-2023-2982

The CVE-2023-2982 entry concerns the WordPress plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn). Affected versions are up to and including 7.6.4, where authentication bypass is possible due to insufficient encryption during login validation, enabling unauthenticated...

9.8CVSS9.4AI score0.46242EPSS
Exploits4References5Affected Software1
Packet Storm
Packet Storm
added 2023/06/28 12:0 a.m.391 views

WordPress Social Login And Register 7.6.4 Authentication Bypass

Description: WordPress Social Login and Register Discord, Google, Twitter, LinkedIn = 7.6.4 – Authentication Bypass Affected Plugin: WordPress Social Login and Register Discord, Google, Twitter, LinkedIn Plugin Slug: woocommerce-abandoned-cart Affected Versions: = 7.6.4 CVE ID: CVE-2023-2982 CVSS...

7.1AI score0.46242EPSS
Exploits4
Rows per page
Query Builder