Lucene search
Yith Woocommerce Social Login Security Vulnerabilities - February
cve
plugin-fw/lib/yit-plugin-panel-wc.php in the YIT Plugin Framework through 3.3.8 for WordPress allows authenticated options changes.
4.3CVSS
4.4AI Score
0.001EPSS
2019-10-31 05:15 PM
80
cve
The WooCommerce - Social Login plugin for WordPress is vulnerable to unauthenticated privilege escalation in all versions up to, and including, 2.7.3. This is due to a lack of brute force controls on a weak one-time password. This makes it possible for unauthenticated attackers to brute force the o...
7.3CVSS
7.4AI Score
0.0005EPSS
2024-07-20 08:15 AM
36