Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-26511

Disclosure Date: October 02, 2020 (last updated February 22, 2025)
The wpo365-login plugin before v11.7 for WordPress allows use of a symmetric algorithm to decrypt a JWT token. This leads to authentication bypass.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0