2 matches found
CVE-2024-11087
creationtimestamp| type| source ---|---|--- 2025-03-08 07:36:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6928 2025-03-08 09:20:06+00:00| seen| https://t.me/cvedetector/19882 2025-03-08 09:48:34+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114126180438778382 2025-03-...
CVE-2024-11087 miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) Pro Addon <= 200.3.9 - Authentication Bypass
The miniOrange Social Login and Register Discord, Google, Twitter, LinkedIn Pro Addon plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 200.3.9. This is due to insufficient verification on the user being returned by the social login token. This make...