Podatność CVE-2023-35039

Podatność CVE-2023-35039

Publikacja: 2023-12-07 Modyfikacja: 2023-12-14

Opis:

Improper Restriction of Excessive Authentication Attempts vulnerability in Be Devious Web Development Password Reset with Code for WordPress REST API allows Authentication Abuse.This issue affects Password Reset with Code for WordPress REST API: from n/a through 0.0.15.

Typ:

CWE-307

(Improper Restriction of Excessive Authentication Attempts)

Affected software
Bedevious -> Password reset with code for wordpress rest api

Referencje:

https://patchstack.com/database/vulnerability/bdvs-password-reset/wordpress-password-reset-with-code-for-wordpress-rest-api-plugin-0-0-15-privilege-escalation-due-to-weak-pin-generation-vulnerability?_s_id=cve

Podatność CVE-2023-35039

Improper Restriction of Excessive Authentication Attempts vulnerability in Be Devious Web Development Password Reset with Code for WordPress REST API allows Authentication Abuse.This issue affects Password Reset with Code for WordPress REST API: from n/a through 0.0.15.

CWE-307

Affected software

Referencje: