Lucene search
K

4 matches found

NVD
NVD
added 2024/06/05 5:15 a.m.21 views

CVE-2024-5149

The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...

6.5CVSS6.4AI score0.00388EPSS
Exploits0References3
CVE
CVE
added 2024/06/05 4:32 a.m.55 views

CVE-2024-5149

The vulnerability CVE-2024-5149 affects the BuddyForms WordPress plugin (all versions up to and including 2.8.9). It enables an Email Verification Bypass due to an insufficiently random activation code, allowing unauthenticated attackers to bypass email verification. Wordfence reports this issue ...

6.5CVSS6AI score0.00388EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/06/05 4:32 a.m.35 views

CVE-2024-5149 BuddyForms <= 2.8.9 - Email Verification Bypass due to Insufficient Randomness

The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...

6.5CVSS5.5AI score0.00388EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/06/05 4:32 a.m.17 views

CVE-2024-5149 BuddyForms <= 2.8.9 - Email Verification Bypass due to Insufficient Randomness

The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...

6.5CVSS7.1AI score0.00388EPSS
Exploits0References2
Rows per page
Query Builder