Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22303

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00505EPSS
Exploits0References2
CNVD
CNVD
added 2025/07/25 12:0 a.m.5 views

WordPress Orion Login with SMS plugin authentication bypass vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. An authentication bypass vulnerability exists in the WordPress Orion Login with SMS plugin, which stems from an insufficiently strong OTP value for the olwshandleverifyphone...

8.1CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/24 10:22 a.m.10 views

CVE-2025-7692

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.5. This is due to the olwshandleverifyphone function not utilizing a strong enough OTP value, exposing the hash needed to generate the OTP value, and no restrictions on t...

8.1CVSS6.4AI score0.00505EPSS
Exploits0References1
NVD
NVD
added 2025/07/22 10:15 a.m.8 views

CVE-2025-7692

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.5. This is due to the olwshandleverifyphone function not utilizing a strong enough OTP value, exposing the hash needed to generate the OTP value, and no restrictions on t...

8.1CVSS0.00505EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/22 9:22 a.m.4 views

CVE-2025-7692 Orion Login with SMS <= 1.0.5 - Authentication Bypass via Weak OTP

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.5. This is due to the olwshandleverifyphone function not utilizing a strong enough OTP value, exposing the hash needed to generate the OTP value, and no restrictions on t...

8.1CVSS5.8AI score0.00505EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/22 9:22 a.m.10 views

CVE-2025-7692 Orion Login with SMS <= 1.0.5 - Authentication Bypass via Weak OTP

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.5. This is due to the olwshandleverifyphone function not utilizing a strong enough OTP value, exposing the hash needed to generate the OTP value, and no restrictions on t...

8.1CVSS0.00505EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/22 12:0 a.m.7 views

PT-2025-30390 · WordPress · Orion Login With Sms

Name of the Vulnerable Software and Affected Versions: Orion Login with SMS plugin for WordPress versions up to and including 1.0.5 Description: The Orion Login with SMS plugin for WordPress is susceptible to authentication bypass due to insufficient security measures in the olws handle verify...

8.1CVSS7AI score0.00505EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/22 12:0 a.m.3 views

WordPress plugin Orion Login with SMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. An authentication bypass vulnerability exists in the WordPress Orion Login with SMS plugin, which stems from an insufficiently strong OTP value for the olwshandleverifyphone...

8.1CVSS6.9AI score0.00505EPSS
Exploits0References4
Rows per page
Query Builder