logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2023-1092

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-1092

Description:
The OAuth Single Sign On Free WordPress plugin before 6.24.2, OAuth Single Sign On Standard WordPress plugin before 28.4.9, OAuth Single Sign On Premium WordPress plugin before 38.4.9 and OAuth Single Sign On Enterprise WordPress plugin before 48.4.9 do not have CSRF checks when deleting Identity Providers (IdP), which could allow attackers to make logged in admins delete arbitrary IdP via a CSRF attack
Last updated date:
04/03/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/03/2023
Reference url to background

https://wpscan.com/vulnerability/52e29f16-b6dd-4132-9bb8-ad10bd3c39d7

Type:
exploit
Confidence:
HIGH
Date of publishing:
04/03/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/03/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/03/2023
Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy