Login with Phone Number - Cross-Site Scripting

Login with Phone Number, versions 1.4.2, is affected by an reflected XSS vulnerability in the login-with-phonenumber.php' file in the 'lwpforgotpassword' function. id: CVE-2023-23492 info: name: Login with Phone Number - Cross-Site Scripting author: r3Y3r53 severity: high description: | Login wit...

EUVD-2024-34743

Malicious code in bioql PyPI...

EUVD-2024-29313

Malicious code in bioql PyPI...

CVE-2024-37429

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.35...

CVE-2024-37429

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Hamid Alinia – idehweb Login with phone number allows Stored XSS.This issue affects Login with phone number: from n/a through 1.7.35...

CVE-2024-37429

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.35...

PT-2024-27545 · Hamid Alinia · Idehweb

Name of the Vulnerable Software and Affected Versions: Hamid Alinia – idehweb versions 1.7.35 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in the Login with phone...

CVE-2024-32507

Incorrect Privilege Assignment vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.16...

CVE-2024-32507 WordPress Login with phone number plugin <= 1.7.16 - Privilege Escalation vulnerability

Improper Privilege Management vulnerability in Hamid Alinia – idehweb Login with phone number allows Privilege Escalation.This issue affects Login with phone number: from n/a through 1.7.16...

PT-2024-24624 · Hamid Alinia · Idehweb

Name of the Vulnerable Software and Affected Versions: Hamid Alinia – idehweb versions 1.7.16 and earlier Description: The issue is related to improper privilege management, allowing privilege escalation through the 'Login with phone number' feature. Recommendations: For versions 1.7.16 and...

CVE-2024-34371

Missing Authorization vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.7.18...

CVE-2024-34371

CVE-2024-34371 : A Missing Authorization vulnerability affects the WordPress plugin Login with phone number (login-with-phone-number) , reported for versions from n/a up to and including 1.7.18 . The Red Hat and CVE records confirm an unauthorized access issue within this plugin. The entry notes ...

PT-2024-25830 · Hamid Alinia · Idehweb Login With Phone Number

Name of the Vulnerable Software and Affected Versions: Hamid Alinia – idehweb Login with phone number versions 1.7.18 and earlier Description: The issue is related to a Missing Authorization vulnerability in the Login with phone number feature. This vulnerability allows unauthorized access,...

CVE-2024-31424

Cross-Site Request Forgery CSRF vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through = 1.6.93...

CVE-2024-31424

CVE-2024-31424 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the WordPress plugin/login component described as "Login with phone number" by Hamid Alinia - idehweb. The advisory notes impact on the feature set labeled as Login with phone number, with affected versions listed as fr...

PT-2024-24065 · Hamid Alinia · Idehweb Login With Phone Number

Name of the Vulnerable Software and Affected Versions: Hamid Alinia - idehweb Login with phone number versions 1.6.93 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the Login with phone number feature. This allows an attacker to perform unintended actions on a user's...

VulnCheck KEV: CVE-2024-32507

Improper Privilege Management vulnerability in Hamid Alinia - idehweb Login with phone number allows Privilege Escalation.This issue affects Login with phone number: from n/a through 1.7.16...