Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.6 views

CVE-2023-5525

The Limit Login Attempts Reloaded WordPress plugin before 2.25.26 is missing authorization on the toggleautoupdate AJAX action, allowing any user with a valid nonce to toggle the auto-update status of the plugin...

4.3CVSS6.7AI score0.00454EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2023/11/27 4:22 p.m.11 views

CVE-2023-5525 Limit Login Attempts Reloaded < 2.25.26 - Admin+ Missing Authorization to Toggle Plugin Auto-Update

The Limit Login Attempts Reloaded WordPress plugin before 2.25.26 is missing authorization on the toggleautoupdate AJAX action, allowing any user with a valid nonce to toggle the auto-update status of the plugin...

6.7AI score0.00454EPSS
Exploits2References1
CVE
CVE
added 2023/11/27 4:22 p.m.112 views

CVE-2023-5525

CVE-2023-5525 affects the Limit Login Attempts Reloaded WordPress plugin prior to 2.25.26. The root cause is missing authorization on the toggle_auto_update AJAX action, allowing any user with a valid nonce to toggle the plugin’s auto-update status. Impact: potential unauthorized control of auto-...

4.3CVSS4.5AI score0.00454EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/11/27 4:22 p.m.18 views

CVE-2023-5525 Limit Login Attempts Reloaded < 2.25.26 - Admin+ Missing Authorization to Toggle Plugin Auto-Update

The Limit Login Attempts Reloaded WordPress plugin before 2.25.26 is missing authorization on the toggleautoupdate AJAX action, allowing any user with a valid nonce to toggle the auto-update status of the plugin...

4.9AI score0.00454EPSS
Exploits2References1
Rows per page
Query Builder