CVE | CVE-2023-6036 |
CVE Title | |
Published Date | 2024-02-12T16:15Z |
Modified Date | 2024-02-12T17:31Z |
Description | The Web3 WordPress plugin before 3.0.0 is vulnerable to an authentication bypass due to incorrect authentication checking in the login flow in functions 'handle_auth_request' and 'hadle_login_request'. This makes it possible for non authenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username. |
References | |
By clicking these links you will leave this website. We do not endorse and will not be held accountable for any activity on external sites. | |
Reference URL | https://wpscan.com/vulnerability/7f30ab20-805b-422c-a9a5-21d39c570ee4/ |
Reference Description | https://wpscan.com/vulnerability/7f30ab20-805b-422c-a9a5-21d39c570ee4/ |
Reference Description | |
Sources | NIST MITRE |
Note
- No CVSS data for this CVE