8 matches found
PT-2026-51674
Name of the Vulnerable Software and Affected Versions Invoice Generator plugin for WordPress versions prior to 1.0.1 Description The Invoice Generator plugin for WordPress allows unauthenticated account takeover through a flaw in the password reset process. The pravel invoice change password...
CVE-2024-5149
The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...
CVE-2024-5868
The WooCommerce - Social Login plugin for WordPress is vulnerable to Email Verification in all versions up to, and including, 2.6.2 via the use of insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...
CVE-2024-5868
The WooCommerce - Social Login plugin for WordPress is vulnerable to Email Verification in all versions up to, and including, 2.6.2 via the use of insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...
CVE-2024-5149
The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification...
eZ Publish < 3.9.5/3.10.1/4.0.1 (token) Privilege Escalation Exploit
No description provided by source. ?php / eZ Publish privilege escalation and weak activation token for new user exploit by s4avrd0w [email protected] Versions affected = 3.5.6 eZ Publish privilege escalation resolved in 3.9.5, 3.10.1, 4.0.1 More info:...
EZ Publish 3.9.53.10.14.0.1 - token Privilege Escalation
EZ Publish 3.9.53.10.14.0.1 - token Privilege Escalation = 3.5.6 eZ Publish privilege escalation resolved in 3.9.5, 3.10.1, 4.0.1 More info: http://ez.no/developer/security/securityadvisories/ezpublish39/ezsa2008003insufficientformhandlingmadeprivilegeescalationpossible eZ Publish weak activation...
eZ Publish < 3.9.5/3.10.1/4.0.1 (token) Privilege Escalation Exploit
No description provided by source. ?php / eZ Publish privilege escalation and weak activation token for new user exploit by s4avrd0w [email protected] Versions affected = 3.5.6 eZ Publish privilege escalation resolved in 3.9.5, 3.10.1, 4.0.1 More info:...