Vulnerabilities > Auth0 > Login BY Auth0 > 3.11.0

DATE CVE VULNERABILITY TITLE RISK
2020-04-01 CVE-2020-7948 Unspecified vulnerability in Auth0 Login BY Auth0
An issue was discovered in the Login by Auth0 plugin before 4.0.0 for WordPress.
network
low complexity
auth0
6.5
6.5
2020-04-01 CVE-2020-7947 Injection vulnerability in Auth0 Login BY Auth0
An issue was discovered in the Login by Auth0 plugin before 4.0.0 for WordPress.
network
low complexity
auth0 CWE-74
7.5
7.5
2020-04-01 CVE-2020-6753 Cross-site Scripting vulnerability in Auth0 Login BY Auth0
The Login by Auth0 plugin before 4.0.0 for WordPress allows stored XSS on multiple pages, a different issue than CVE-2020-5392.
network
auth0 CWE-79
4.3
4.3
2020-02-05 CVE-2019-20173 Cross-site Scripting vulnerability in Auth0 Login BY Auth0 3.11.0/3.11.1/3.11.2
The Auth0 wp-auth0 plugin 3.11.x before 3.11.3 for WordPress allows XSS via a wle parameter associated with wp-login.php.
network
auth0 CWE-79
4.3
4.3