Vulnerability CVE-2023-35039


Published: 2023-12-07   Modified: 2023-12-14

Description:
Improper Restriction of Excessive Authentication Attempts vulnerability in Be Devious Web Development Password Reset with Code for WordPress REST API allows Authentication Abuse.This issue affects Password Reset with Code for WordPress REST API: from n/a through 0.0.15.

Type:

CWE-307

(Improper Restriction of Excessive Authentication Attempts)

Affected software
Bedevious -> Password reset with code for wordpress rest api 

 References:
https://patchstack.com/database/vulnerability/bdvs-password-reset/wordpress-password-reset-with-code-for-wordpress-rest-api-plugin-0-0-15-privilege-escalation-due-to-weak-pin-generation-vulnerability?_s_id=cve

Copyright 2024, cxsecurity.com

 

Back to Top