- EPSS 72.36%
- Veröffentlicht 09.07.2025 00:49:28
- Zuletzt bearbeitet 10.07.2025 13:18:53
An authentication bypass vulnerability exists in the WordPress Pie Register plugin ≤ 3.7.1.4 that allows unauthenticated attackers to impersonate arbitrary users by submitting a crafted POST request to the login endpoint. By setting social_site=true ...
CVE-2024-11293
- EPSS 0.1%
- Veröffentlicht 04.12.2024 08:15:06
- Zuletzt bearbeitet 04.12.2024 08:15:06
The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Social Sites Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and incl...
CVE-2024-4544
- EPSS 0.19%
- Veröffentlicht 24.05.2024 04:15:08
- Zuletzt bearbeitet 21.11.2024 09:43:04
The Pie Register - Social Sites Login (Add on) plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.7.7. This is due to insufficient verification on the user being supplied during a social login through the ...
CVE-2013-4954
- EPSS 4.92%
- Veröffentlicht 29.07.2013 23:27:50
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in the Genetech Solutions Pie-Register plugin before 1.31 for WordPress, when "Allow New Registrations to set their own Password" is enabled, allow remote attackers to inject arbitra...