MemberSonic Lite <= 1.2 - Authentication Bypass

Affects Plugin

fixed in version 1.302

References

CVE 2016-10971
URL http://www.pritect.net/blog/membersonic-lite-1-2-unauthenticated-login

Classification

Type AUTHBYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
CWE CWE-287

Miscellaneous

Submitter James Golovich
Submitter Website http://pritect.net
Submitter Twitter Pritect
Views 5692
Verified No
WPVDB ID 8533

Timeline

Publicly Published 2016-06-28 (over 3 years ago)
Added 2016-06-29 (over 3 years ago)
Last Updated 2019-11-28 (14 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin