Skip to main content

Wordpress Social Login And Register Discord Google Twitter Linkedin

3 CVEs product

Monthly

CVE-2023-2982 CRITICAL POC THREAT Emergency

The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 70.1%.

Google WordPress Authentication Bypass Wordpress Social Login And Register Discord Google Twitter Linkedin
NVD VulDB
CVSS 3.1
9.8
EPSS
70.1%
Threat
5.6
CVE-2023-23706 HIGH This Week

Cross-Site Request Forgery (CSRF) vulnerability in miniOrange WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google CSRF WordPress Wordpress Social Login And Register Discord Google Twitter Linkedin
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-23710 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google XSS WordPress Wordpress Social Login And Register Discord Google Twitter Linkedin
NVD
CVSS 3.1
4.8
EPSS
0.4%
EPSS 70% 5.6 CVSS 9.8
CRITICAL POC THREAT Emergency

The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 70.1%.

Google WordPress Authentication Bypass +1
NVD VulDB
EPSS 0% CVSS 8.8
HIGH This Week

Cross-Site Request Forgery (CSRF) vulnerability in miniOrange WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google CSRF WordPress +1
NVD
EPSS 0% CVSS 4.8
MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google XSS WordPress +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy