3 matches found
CVE-2024-7027
The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. This is due to insufficient verification on the user being supplied during a QR code login through the plugin. This makes it possible for unauthenticated attackers t...
CVE-2024-7027 WooCommerce - PDF Vouchers <= 4.9.3 - Authentication Bypass to Voucher Vendor
The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. This is due to insufficient verification on the user being supplied during a QR code login through the plugin. This makes it possible for unauthenticated attackers t...
CVE-2024-7027
The CVE-2024-7027 entry concerns the WooCommerce – PDF Vouchers plugin for WordPress. Affected versions are up to and including 4.9.3, where authentication bypass occurs due to insufficient verification in the QR code login flow, allowing unauthenticated attackers to log in as any existing Vouche...