Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WordPress Social Login and Register (Discord Google Twitter LinkedIn) Security Bypass - CVE-2023-2982 - Vulnerability Database
WP Plugin Miniorange Login Openid

WordPress Plugin WordPress Social Login and Register (Discord Google Twitter LinkedIn) Security Bypass - CVE-2023-2982

Critical
Reference: CVE-2023-2982
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-2982
Title: WordPress Plugin WordPress Social Login and Register (Discord Google Twitter LinkedIn) Security Bypass
Overview:

WordPress Plugin WordPress Social Login and Register (Discord Google Twitter LinkedIn) is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently log in as any existing user on the site including administrator if they know the email address. WordPress Plugin WordPress Social Login and Register (Discord Google Twitter LinkedIn) version 7.6.4 is vulnerable prior versions may also be affected.