miniOrange’s WordPress Social Login and Register plugin was affected by a critical auth bypass bug

A critical authentication bypass flaw in miniOrange’s WordPress Social Login and Register plugin, can allow gaining access to any account on a site. Wordfence researchers discovered an authentication bypass vulnerability in miniOrange’s WordPress Social Login and Register plugin, that can allow an unauthenticated attacker to gain access to any account on a site by knowing the associated email […]

The post miniOrange’s WordPress Social Login and Register plugin was affected by a critical auth bypass bug appeared first on Security Affairs.

This article has been indexed from Security Affairs

Read the original article: