Lucene search
+L

4 matches found

nvd
nvd
added 2023/09/13 3:15 a.m.9 views

CVE-2023-4915

The WP User Control plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 1.5.3. This is due to the plugin using native password reset functionality, with insufficient validation on the password reset function in the WP User Control Widget. The functi...

5.3CVSS5.3AI score0.00377EPSS
Exploits0References2
cve
cve
added 2023/09/13 2:54 a.m.58 views

CVE-2023-4915

CVE-2023-4915 concerns the WP User Control WordPress plugin. The vulnerability stems from using native password-reset functionality with insufficient validation in the WP User Control Widget, allowing unauthorized password resets for versions up to and including 1.5.3. The attacker can initiate a...

5.3CVSS5.7AI score0.00377EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2023/09/13 2:54 a.m.7 views

CVE-2023-4915 WP User Control <= 1.5.3 - Insecure Password Reset Mechanism

The WP User Control plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 1.5.3. This is due to the plugin using native password reset functionality, with insufficient validation on the password reset function in the WP User Control Widget. The functi...

5.3CVSS6.7AI score0.00377EPSS
Exploits0References2
patchstack
patchstack
added 2023/09/13 12:0 a.m.18 views

WordPress WP User Control Plugin <= 1.5.3 is vulnerable to Other Vulnerability Type

Software WP User Control Type Plugin Vulnerable versions = 1.5.3 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Other Vulnerability Type CVE CVE-2023-4915 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5604d612e4e9 Credits Lana Codes Required privilege...

5.3CVSS6.8AI score0.00377EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder