Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2024-9820
- EPSS 0.07%
- Veröffentlicht 15.10.2024 02:15:03
- Zuletzt bearbeitet 19.10.2024 00:44:10
The WP 2FA with Telegram plugin for WordPress is vulnerable to Two-Factor Authentication Bypass in versions up to, and including, 3.0. This is due to the two-factor code being stored in a cookie, which makes it possible to bypass two-factor authentic...
8.8
CVE-2024-9687
- EPSS 0.11%
- Veröffentlicht 15.10.2024 02:15:02
- Zuletzt bearbeitet 17.10.2024 21:11:14
The WP 2FA with Telegram plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and including, 3.0. This is due to insufficient validation of the user-controlled key on the 'validate_tg' action. This makes it possible for auth...
1