{ads}

Critical Security Flaw in Social Login Plugin for WordPress Exposes Users' Accounts

Written By Thursday, 29 June 2023 Add Comment



June 29, 2023 at 12:54PM

A critical security flaw has been disclosed in miniOrange's Social Login and Register plugin for WordPress that could enable a malicious actor to log in as any user-provided information about email address is already known. Tracked as CVE-2023-2982 (CVSS score: 9.8), the authentication bypass flaw impacts all versions of the plugin, including and prior to 7.6.4. It was addressed on June 14, 2023

from The Hacker News https://ift.tt/qXCz7W4

0 Response to "Critical Security Flaw in Social Login Plugin for WordPress Exposes Users' Accounts"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads