4 matches found
CVE-2024-34371
Missing Authorization vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.18...
CVE-2024-34371 WordPress Login with phone number plugin <= 1.7.18 - Broken Access Control vulnerability
Missing Authorization vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.18...
CVE-2024-34371
CVE-2024-34371 : A Missing Authorization vulnerability affects the WordPress plugin Login with phone number (login-with-phone-number) , reported for versions from n/a up to and including 1.7.18 . The Red Hat and CVE records confirm an unauthorized access issue within this plugin. The entry notes ...
WordPress Login with phone number Plugin <= 1.7.18 is vulnerable to Broken Access Control
Software Login with phone number Type Plugin Vulnerable versions = 1.7.18 Fixed in 1.7.20 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-34371 Patch priority Low CVSS severity Low 4.3 Developer Hamid Alinia PSID 42d051f8202b Credits Dhabaleshwar Das...