CVE-2021-37597
WP Cerber before 8.9.3 allows MFA bypass via wordpress_logged_in_[hash] manipulation.
9.8CVSS
9.5AI Score
0.004EPSS
CVE-2021-37598
WP Cerber before 8.9.3 allows bypass of /wp-json access control via a trailing ? character.
5.3CVSS
5.3AI Score
0.001EPSS