VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Authentication Bypass Using an Alternate Path or Channel
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-10-29
CVE-2024-50334
Authentication Bypass Using an Alternate Path or Channel vulnerability in Erudika Scoold
Scoold is a Q&A and a knowledge sharing platform for teams.
network
low complexity
erudika
CWE-288
5.3
5.3
2024-10-28
CVE-2024-10438
Authentication Bypass Using an Alternate Path or Channel vulnerability in Sun.Net Ehdr Ctms
The eHRD CTMS from Sunnet has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to bypass authentication by satisfying specific conditions in order to access certain functionalities.
network
low complexity
sun-net
CWE-288
7.5
7.5
2024-10-26
CVE-2024-9501
The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 3.0.7.
network
low complexity
CWE-288
critical
9.8
9.8
2024-10-26
CVE-2024-9890
The User Toolkit plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.2.3.
network
low complexity
CWE-288
8.8
8.8
2024-10-26
CVE-2024-9930
The Extensions by HocWP Team plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2.3.2.
network
low complexity
CWE-288
critical
9.8
9.8
2024-10-26
CVE-2024-9931
The Wux Blog Editor plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.0.0.
network
low complexity
CWE-288
critical
9.8
9.8
2024-10-16
CVE-2024-9893
The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 3.1.14.
network
low complexity
CWE-288
critical
9.8
9.8
2024-10-16
CVE-2024-9105
The UltimateAI plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.8.3.
network
low complexity
CWE-288
critical
9.8
9.8
2024-10-11
CVE-2024-9822
Authentication Bypass Using an Alternate Path or Channel vulnerability in Pedalo Connector
The Pedalo Connector plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.0.5.
network
low complexity
pedalo
CWE-288
critical
9.8
9.8
2024-10-01
CVE-2024-9106
The Wechat Social login plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.3.0.
network
low complexity
CWE-288
critical
9.8
9.8
«
Previous
1
2
(current)
»