CVE-2024-9862 | miniOrange OTP Verification with Firebase Plugin up to 3.6.0 on WordPress unverified password change

Posted by Angelo Barbosa | Oct 16, 2024 | CVE

A vulnerability classified as critical has been found in miniOrange OTP Verification with Firebase Plugin up to 3.6.0 on WordPress. This affects an unknown part. The manipulation leads to unverified password change.

This vulnerability is uniquely identified as CVE-2024-9862. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-9862 | miniOrange OTP Verification with Firebase Plugin up to 3.6.0 on WordPress unverified password change

Related Posts

CVE-2024-21034 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection

CVE-2024-23308 | F5 BIG-IP Advanced WAF/BIG-IP ASM 17.1.0 Request Body null pointer dereference (K000137416)

CVE-2024-34209 | Totolink CP450 4.1.0cu.747_B20191224 setIpPortFilterRules stack-based overflow