CVE-2023-1092|The OAuth Single Sign On Free... - VULHUB开源网络安全威胁库

The OAuth Single Sign On Free... CVE-2023-1092

- AV AC AU C I A

发布： 2023-03-27

修订： 2023-11-07

CWE-352

The OAuth Single Sign On Free WordPress plugin before 6.24.2, OAuth Single Sign On Standard WordPress plugin before 28.4.9, OAuth Single Sign On Premium WordPress plugin before 38.4.9 and OAuth Single Sign On Enterprise WordPress plugin before 48.4.9 do not have CSRF checks when deleting Identity Providers (IdP), which could allow attackers to make logged in admins delete arbitrary IdP via a CSRF attack

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有4条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

The OAuth Single Sign On Free... CVE-2023-1092

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单