Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 12:10 a.m.5 views

CVE-2024-4544

The Pie Register - Social Sites Login Add on plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.7.7. This is due to insufficient verification on the user being supplied during a social login through the plugin. This makes it possible for unauthenticate...

9.8CVSS5.9AI score0.00581EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/04 7:32 a.m.12 views

CVE-2024-11293 Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Social Sites Login <= 1.7.9 - Authentication Bypass via WordPress.com OAuth provider

The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Social Sites Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.7.9. This is due to insufficient...

8.1CVSS8.2AI score0.00517EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/12/03 10:2 p.m.5 views

WordPress Pie Register (Add on) - Social Sites Login plugin <= 1.7.9 - Authentication Bypass vulnerability

WordPress Pie Register Add on - Social Sites Login plugin = 1.7.9 - Authentication Bypass vulnerability discovered by wesley wcraft in WordPress Plugin Pie Register Add on - Social Sites Login versions = 1.7.9...

8.1CVSS7AI score0.00517EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/24 5:59 a.m.4 views

WordPress Pie Register - Social Sites Login (Add on) plugin <= 1.7.7 - Authentication Bypass vulnerability

WordPress Pie Register - Social Sites Login Add on plugin = 1.7.7 - Authentication Bypass vulnerability discovered by István Márton in WordPress Plugin Pie Register Add on - Social Sites Login versions = 1.7.7...

9.8CVSS7AI score0.00581EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/24 3:30 a.m.15 views

CVE-2024-4544 Pie Register - Social Sites Login (Add on) <= 1.7.7 - Authentication Bypass

The Pie Register - Social Sites Login Add on plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.7.7. This is due to insufficient verification on the user being supplied during a social login through the plugin. This makes it possible for unauthenticate...

9.8CVSS9.7AI score0.00581EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/24 12:0 a.m.8 views

WordPress Pie Register (Add on) - Social Sites Login Plugin <= 1.7.7 is vulnerable to Broken Authentication

Software Pie Register Add on - Social Sites Login Type Plugin Vulnerable versions = 1.7.7 Fixed in 1.7.8 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-4544 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID...

9.8CVSS6.5AI score0.00581EPSS
Exploits0References2Affected Software1
Hacker One
Hacker One
added 2017/04/25 10:32 a.m.13 views

Weblate: Open redirect in Signing in via Social Sites

Weak Authentication Leads to the Open redirection to Malicios Sites : Signing in via Facebook : + https://hosted.weblate.org/accounts/login/facebook/?next=///evil.com Signing in via Gmail : + https://hosted.weblate.org/accounts/login/google-oauth2/?next=///evil.com Signing in via Github: +...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2013/04/23 1:4 p.m.5 views

Malware More Globally Distributed, Still Made in China

In an attempt to better evade detection, cybercriminals are increasingly configuring their command and control infrastructure in such a way that initial malware callbacks communicate with a server located in the same country as the newly infected machines. This emerging trend is among the vast an...

1.2AI score
Exploits0References5
exploitpack
exploitpack
added 2012/12/14 12:0 a.m.16 views

Social Sites MyBB Plugin 0.2.2 - Cross-Site Scripting

Social Sites MyBB Plugin 0.2.2 - Cross-Site Scripting Exploit Title: Social Sites MyBB Plugin 0.2.2 Cross Site Scripting Google Dork: inurl:usercp.php?action=socialsites Date: 13.12.2012 Exploit Author: s3m00t Vendor Homepage: http://mattrogowski.co.uk/mybb/ Software Link:...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2009/04/23 7:7 p.m.20 views

Cybergangs use cheap labor to break codes on social sites

From USA Today Byron Acohido It’s become the new front in cybercrime: scams and identity-theft programs that attack e-mail accounts and users of social-networking sites such as Facebook and MySpace. To carry out many of these automated attacks, cybercriminals first must overcome “captchas,” the...

2.1AI score
Exploits0References1
Rows per page
Query Builder