Lucene search
WpvulndbWPVDB-ID:844A4E43-84C7-4D84-B0F5-E6327504150FHistoryJun 28, 2023 - 12:00 a.m.
WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) < 7.6.5 - Authentication Bypass
2023-06-2800:00:00
wpscan.com
14
wordpress
social login
register
authentication
bypass
plugin
credential validation
unauthenticated attackers
escalate privileges
administrator's emails
0.012 Low
EPSS
Percentile
85.4%
The improper credential validation on the plugin allows unauthenticated attackers to escalate privileges if administrator’s emails is known.
| CPE | Name | Operator | Version |
|---|---|---|---|
| miniorange-login-openid | lt | 7.6.5 |
Related
openvas
openvas
nvd
nvd
CVE-2023-2982
2023-06-29 02:15:16
nuclei
nuclei
Miniorange Social Login and Register <= 7.6.3 - Authentication Bypass
2023-06-29 12:58:22
wordfence
wordfence
cve
cve
CVE-2023-2982
2023-06-29 02:15:16
prion
prion
Authentication flaw
2023-06-29 02:15:00
hackerone
hackerone
CS Money: Authentication Bypass to (CVE-2023-2982)
2023-12-02 14:35:46
githubexploit
githubexploit
Exploit for CVE-2023-2982
2023-06-29 14:21:08
Exploit for CVE-2023-2982
2023-06-30 09:15:02
zdt
zdt
cvelist
cvelist
CVE-2023-2982
2023-06-29 01:56:56
packetstorm
packetstorm
WordPress Social Login And Register 7.6.4 Authentication Bypass
2023-06-28 00:00:00
thn
thn