Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Login/Signup Popup (Inline Form Woocommerce) Security Bypass - CVE-2024-5324 - Vulnerability Database
WP Plugin Easy Login Woocommerce

WordPress Plugin Login/Signup Popup (Inline Form Woocommerce) Security Bypass - CVE-2024-5324

High
Reference: CVE-2024-5324
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-5324
Title: WordPress Plugin Login/Signup Popup (Inline Form Woocommerce) Security Bypass
Overview:

WordPress Plugin Login/Signup Popup (Inline Form Woocommerce) is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change arbitrary site options which can be used to enable new user registration and set the default role for new users to Administrator. WordPress Plugin Login/Signup Popup (Inline Form Woocommerce) versions 2.7.1 - 2.7.2 are vulnerable.