This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
The miniOrange Google Authenticator plugin for WordPress is not secure in versions up to 5.4.39. It is vulnerable to a type of attack called Reflected Cross-Site Scripting, which lets an unauthentica...
Read MoreMiniOrange's Google Authenticator WordPress plugin before version 5.5 had a security issue. It did not have the proper safeguards in place to protect against unauthorized changes or malicious attempts...
Read MoreThe miniOrange's Google Authenticator plugin for WordPress is a security feature that can be vulnerable to a type of attack called Reflected Cross-Site Scripting. This is when malicious code can be i...
Read MoreMiniOrange's Google Authenticator plugin for WordPress can be vulnerable to Cross-Site Request Forgery if it is using versions up to 5.6.1. This means that an unauthenticated attacker could make a fa...
Read MoreThe miniOrange plugin for WordPress
Read MoreThe miniOrange Google Authenticator WordPress plugin has a security issue that could allow unauthorized people to change its settings. This affects all versions of the plugin up to and including 5.6.1...
Read MoreMiniOrange's Google Authenticator plugin for WordPress
Read MoreThe miniOrange Google Authenticator plugin for WordPress is vulnerable to an authorization bypass. This means that attackers with subscriber-level permissions (or higher) can use the plugin to access...
Read More