Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-35207

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0039EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/09/26 12:35 p.m.16 views

CVE-2022-2987 Ldap WP Login / Active Directory Integration < 3.0.2 - Unauthenticated Settings Update to Auth Bypass

The Ldap WP Login / Active Directory Integration WordPress plugin before 3.0.2 does not have any authorisation and CSRF checks when updating it's settings which are hooked to the init action, allowing unauthenticated attackers to update them. Attackers could set their own LDAP server to be used t...

7.8AI score0.0039EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/09/26 12:35 p.m.6 views

CVE-2022-2987 Ldap WP Login / Active Directory Integration < 3.0.2 - Unauthenticated Settings Update to Auth Bypass

The Ldap WP Login / Active Directory Integration WordPress plugin before 3.0.2 does not have any authorisation and CSRF checks when updating it's settings which are hooked to the init action, allowing unauthenticated attackers to update them. Attackers could set their own LDAP server to be used t...

7.7AI score0.0039EPSS
Exploits2References1
CVE
CVE
added 2022/09/26 12:35 p.m.63 views

CVE-2022-2987

CVE-2022-2987 affects the Ldap WP Login / Active Directory Integration WordPress plugin prior to 3.0.2. The issue is lack of authorization and CSRF protections when updating settings (tied to the init action), allowing unauthenticated attackers to modify settings and potentially configure a malic...

7.5CVSS7.6AI score0.0039EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder