Vulnerability CVE-2023-35039

Vulnerability CVE-2023-35039

Published: 2023-12-07 Modified: 2023-12-14

Description:

Improper Restriction of Excessive Authentication Attempts vulnerability in Be Devious Web Development Password Reset with Code for WordPress REST API allows Authentication Abuse.This issue affects Password Reset with Code for WordPress REST API: from n/a through 0.0.15.

Type:

CWE-307

(Improper Restriction of Excessive Authentication Attempts)

Affected software
Bedevious -> Password reset with code for wordpress rest api

References:

https://patchstack.com/database/vulnerability/bdvs-password-reset/wordpress-password-reset-with-code-for-wordpress-rest-api-plugin-0-0-15-privilege-escalation-due-to-weak-pin-generation-vulnerability?_s_id=cve

Vulnerability CVE-2023-35039

Improper Restriction of Excessive Authentication Attempts vulnerability in Be Devious Web Development Password Reset with Code for WordPress REST API allows Authentication Abuse.This issue affects Password Reset with Code for WordPress REST API: from n/a through 0.0.15.

CWE-307

Affected software

References: