Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.11 views

CVE-2024-1290

The User Registration WordPress plugin before 2.12 does not prevent users with at least the contributor role from rendering sensitive shortcodes, allowing them to generate, and leak, valid password reset URLs, which they can use to take over any accounts...

6.5CVSS6.8AI score0.00554EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/03/12 12:0 a.m.11 views

WordPress Formidable Registration Plugin < 2.12 is vulnerable to Broken Authentication

Software Formidable Registration Type Plugin Vulnerable versions 2.12 Fixed in 2.12 OWASP Top 10 A4: Insecure Design Classification Broken Authentication CVE CVE-2024-1290 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID de229a590aad Credits Scott Kingsley Clark...

6.5CVSS6.4AI score0.00554EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/11 5:56 p.m.18 views

CVE-2024-1290 Formidable Registration < 2.12 - Contributor+ Arbitrary User Password Reset To Account Takeover

The User Registration WordPress plugin before 2.12 does not prevent users with at least the contributor role from rendering sensitive shortcodes, allowing them to generate, and leak, valid password reset URLs, which they can use to take over any accounts...

6.8AI score0.00554EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/03/11 5:56 p.m.36 views

CVE-2024-1290 Formidable Registration < 2.12 - Contributor+ Arbitrary User Password Reset To Account Takeover

The User Registration WordPress plugin before 2.12 does not prevent users with at least the contributor role from rendering sensitive shortcodes, allowing them to generate, and leak, valid password reset URLs, which they can use to take over any accounts...

6.7AI score0.00554EPSS
Exploits2References1
CVE
CVE
added 2024/03/11 5:56 p.m.98 views

CVE-2024-1290

CVE-2024-1290 affects the WordPress Formidable Registration plugin (

6.5CVSS6.7AI score0.00554EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder