Lucene search
WPScanCVELIST:CVE-2021-24647HistoryNov 08, 2021 - 5:34 p.m.
CVE-2021-24647 Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login
2021-11-0817:34:57
CWE-287
WPScan
www.cve.org
3
cve-2021-24647
pie register
unauthenticated arbitrary login
wordpress plugin
social login
user id
username
EPSS
0.187
Percentile
96.3%
The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3.1.7.6 has a flaw in the social login implementation, allowing unauthenticated attacker to login as any user on the site by only knowing their user ID or username
CNA Affected
[
{
"product": "Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.1.7.6",
"status": "affected",
"version": "3.1.7.6",
"versionType": "custom"
}
]
}
]Related
prion
prion
Information disclosure
2021-11-08 18:15:00
cve
cve
CVE-2021-24647
2021-11-08 18:15:08
githubexploit
githubexploit
Exploit for Improper Authentication in Genetechsolutions Pie Register
2023-06-15 09:51:36
cnvd
cnvd
WordPress Pie Register plugin authorization issue vulnerability
2021-11-10 00:00:00
nuclei
nuclei
Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login
2023-06-15 11:44:56
wpvulndb
wpvulndb
Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login
2021-10-11 00:00:00
wpexploit
wpexploit
Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login
2021-10-11 00:00:00
nvd
nvd
CVE-2021-24647
2021-11-08 18:15:08