5 matches found
CVE-2025-5190
creationtimestamp| type| source ---|---|--- 2025-05-30 12:37:16+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfaq6yvv7c2 2025-05-30 13:02:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqfc4zkuiz2a...
CVE-2025-5190
The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2. This is due to incorrect authentication checking in the 'ISBABrowseAs::notice' function with the 'isbaoriginaluserCOOKIEHASH' cookie value. This makes it possible for authenticated...
CVE-2025-5190 Browse As <= 0.2 - Authenticated (Subscriber+) Authentication Bypass via Cookie
The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2. This is due to incorrect authentication checking in the 'ISBABrowseAs::notice' function with the 'isbaoriginaluserCOOKIEHASH' cookie value. This makes it possible for authenticated...
CVE-2025-5190 Browse As <= 0.2 - Authenticated (Subscriber+) Authentication Bypass via Cookie
The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2. This is due to incorrect authentication checking in the 'ISBABrowseAs::notice' function with the 'isbaoriginaluserCOOKIEHASH' cookie value. This makes it possible for authenticated...
WordPress Browse As plugin <= 0.2 - Authenticated (Subscriber+) Authentication Bypass via Cookie vulnerability
Authenticated Subscriber+ Authentication Bypass via Cookie vulnerability discovered by István Márton in WordPress Plugin Browse As versions = 0.2...