4 matches found
WordPress Brave Conversion Engine (PRO) plugin <= 0.7.7 - Authentication Bypass to Administrator vulnerability
Authentication Bypass to Administrator vulnerability discovered by Thái An in WordPress Plugin Brave Conversion Engine PRO versions = 0.7.7...
CVE-2025-7710
creationtimestamp| type| source ---|---|--- 2025-08-02 13:37:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvgbwkznkc2e 2025-08-03 00:01:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lvhesq4qwl2k...
CVE-2025-7710 Brave Conversion Engine (PRO) <= 0.7.7 - Authentication Bypass to Administrator
The Brave Conversion Engine PRO plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.7.7. This is due to the plugin not properly restricting a claimed identity while authenticating with Facebook. This makes it possible for unauthenticated attackers t...
CVE-2025-7710 Brave Conversion Engine (PRO) <= 0.7.7 - Authentication Bypass to Administrator
The Brave Conversion Engine PRO plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.7.7. This is due to the plugin not properly restricting a claimed identity while authenticating with Facebook. This makes it possible for unauthenticated attackers t...