CVE-2022-2350 in Disable User Login Plugininformation

Résumé

par MITRE • 11/10/2022

The Disable User Login WordPress plugin through 1.0.1 does not have authorisation and CSRF checks when updating its settings, allowing unauthenticated attackers to block (or unblock) users at will.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

08/07/2022

Divulgation

11/10/2022

Modérer

accepté

Entrée

VDB-210391

CPE

prêt

EPSS

0.00408

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!