Documentation: Home / Vulnerabilities / Authentication vulnerability in tagDiv composer and Newspaper plugins

Latest

Authentication vulnerability in tagDiv composer and Newspaper plugins

CVE-2022-3477

Severity: critical
Status: Open
Publication: October 24, 2022

The tagDiv Composer plugin for WordPress has a security issue that could allow someone to access your account without permission. This problem affects versions up to 3.5 and is related to how the Facebook login feature works. If someone knows your email address

Detected in:

Newsmag - Newspaper & Magazine WordPress Theme fixed vulnerable versions:

Newspaper - News & WooCommerce WordPress Theme fixed vulnerable versions: >= * <= 12

tagDiv Composer fixed vulnerable versions: >= * < 3.5

NewsMag open vulnerable versions: >= * <= 5.2.1

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Login protection as essential security

Why WordPress is (in)secure

Authentication vulnerability in tagDiv composer and Newspaper plugins

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles