3 matches found
CVE-2024-25906
Authentication Bypass by Spoofing vulnerability in WP Happy Coders Comments Like Dislike allows Functionality Bypass.This issue affects Comments Like Dislike: from n/a through 1.2.2...
CVE-2024-25906
CVE-2024-25906 affects the WordPress plugin Comments Like Dislike (WP Happy Coders) up to version 1.2.2 . The issue is an authentication bypass via spoofing, specifically an IP restriction bypass that can allow functionality bypass/escalation of access as described in Patchstack and Red Hat/NVD r...
WordPress Comments Like Dislike Plugin <= 1.2.2 is vulnerable to Bypass Vulnerability
Software Comments Like Dislike Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A1: Broken Access Control Classification Bypass Vulnerability CVE CVE-2024-25906 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a646d3bbd927 Credits Mika Required privilege...