2 matches found
CVE-2024-31424
CVE-2024-31424 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the WordPress plugin/login component described as "Login with phone number" by Hamid Alinia - idehweb. The advisory notes impact on the feature set labeled as Login with phone number, with affected versions listed as fr...
WordPress Login with phone number Plugin <= 1.6.93 is vulnerable to Cross Site Request Forgery (CSRF)
Software Login with phone number Type Plugin Vulnerable versions = 1.6.93 Fixed in 1.6.94 OWASP Top 10 A5: Security Misconfiguration Classification Cross Site Request Forgery CSRF CVE CVE-2024-31424 Patch priority Low CVSS severity Low 8.8 Developer Hamid Alinia PSID 32dbb4921861 Credits Majed...