6 matches found
VulnCheck KEV: CVE-2023-2982
The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This...
Exploit for CVE-2023-2982
CVE-2023-2982 WordPress Social Login and Register Discord, Go...
Critical Security Flaw in Social Login Plugin for WordPress Exposes Users' Accounts
A critical security flaw has been disclosed in miniOrange's Social Login and Register plugin for WordPress that could enable a malicious actor to log in as any user-provided information about email address is already known. Tracked as CVE-2023-2982 CVSS score: 9.8, the authentication bypass flaw...
CVE-2023-2982
The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes...
CVE-2023-2982
The CVE-2023-2982 entry concerns the WordPress plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn). Affected versions are up to and including 7.6.4, where authentication bypass is possible due to insufficient encryption during login validation, enabling unauthenticated...
WordPress Social Login And Register 7.6.4 Authentication Bypass
Description: WordPress Social Login and Register Discord, Google, Twitter, LinkedIn = 7.6.4 – Authentication Bypass Affected Plugin: WordPress Social Login and Register Discord, Google, Twitter, LinkedIn Plugin Slug: woocommerce-abandoned-cart Affected Versions: = 7.6.4 CVE ID: CVE-2023-2982 CVSS...