16 Aoû 2021
Vulnérabilité CVE-2021-24527 CVE Vulnerability
The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.9 has a bug allowing any user to reset the password of the admin of the blog, and gain unauthorised access, due to a bypass in the way the reset key is checked. Furthermore, the admin will not be notified of such change by email for example. (CVSS:0.0) (Last Update:2021-08-16)
Vulnerability Details : The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.9 has a bug allowing any user to reset the password of the admin of the blog, and gain unauthorised access, due to a bypass in the way the reset key is checked. Furthermore, the admin will not be notified of such change by email for example. Publish Date : 2021-08-16 Last Update Date : 2021-08-16 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-24527
- References For CVE-2021-24527
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-24527There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |