Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:26 a.m.7 views

CVE-2024-9522

The WP Users Masquerade plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.0.0. This is due to incorrect authentication and capability checking in the 'ajaxmasqlogin' function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS6.8AI score0.00465EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/10 2:6 a.m.17 views

CVE-2024-9522 WP Users Masquerade <= 2.0.0 - Authenticated (Subscriber+) Authentication Bypass

The WP Users Masquerade plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.0.0. This is due to incorrect authentication and capability checking in the 'ajaxmasqlogin' function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS5.9AI score0.00465EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/10 2:6 a.m.18 views

CVE-2024-9522 WP Users Masquerade <= 2.0.0 - Authenticated (Subscriber+) Authentication Bypass

The WP Users Masquerade plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.0.0. This is due to incorrect authentication and capability checking in the 'ajaxmasqlogin' function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS0.00465EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/10/09 12:0 a.m.16 views

WordPress WP Users Masquerade Plugin <= 2.0.0 is vulnerable to Broken Authentication

Software WP Users Masquerade Type Plugin Vulnerable versions = 2.0.0 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-9522 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID eb305b8e1a56 Credits Istvá...

8.8CVSS8.7AI score0.00465EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder