RSS   Vulnerabilities for 'Wp-auth0'   RSS

2020-04-01
 
CVE-2020-6753

CWE-79
 

 
The Login by Auth0 plugin before 4.0.0 for WordPress allows stored XSS on multiple pages, a different issue than CVE-2020-5392.

 
 
CVE-2020-5392

CWE-79
 

 
A stored cross-site scripting (XSS) vulnerability exists in the Auth0 plugin before 4.0.0 for WordPress via the settings page.

 
 
CVE-2020-5391

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerabilities exist in the Auth0 plugin before 4.0.0 for WordPress via the domain field.

 

 >>> Vendor: Auth0 10 Products
Auth0.js
Aspnet
Aspnet-owin
Passport-sharepoint
Jsonwebtoken
LOCK
Login by auth0
Wp-auth0
Express-jwt
Auth0


Copyright 2020, cxsecurity.com

 

Back to Top