4 matches found
CVE-2023-4915
The WP User Control plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 1.5.3. This is due to the plugin using native password reset functionality, with insufficient validation on the password reset function in the WP User Control Widget. The functi...
CVE-2023-4915
CVE-2023-4915 concerns the WP User Control WordPress plugin. The vulnerability stems from using native password-reset functionality with insufficient validation in the WP User Control Widget, allowing unauthorized password resets for versions up to and including 1.5.3. The attacker can initiate a...
CVE-2023-4915 WP User Control <= 1.5.3 - Insecure Password Reset Mechanism
The WP User Control plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 1.5.3. This is due to the plugin using native password reset functionality, with insufficient validation on the password reset function in the WP User Control Widget. The functi...
WordPress WP User Control Plugin <= 1.5.3 is vulnerable to Other Vulnerability Type
Software WP User Control Type Plugin Vulnerable versions = 1.5.3 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Other Vulnerability Type CVE CVE-2023-4915 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5604d612e4e9 Credits Lana Codes Required privilege...