All In One Login
Approved changes feed: RSS · Atom
cpe:2.3:a:wpexperts:all_in_one_login:*:*:*:*:-:wordpress:*:*
part: a version: * update: *
| Vendor | Wpexperts (2e7dcd66-99b9-59e7-ac12-15648f489cb2) |
|---|---|
| Product | All In One Login (28d8b1ab-7c6d-5b67-acbd-330ca1802a40) |
| Edition | * |
| Language | * |
| Software edition | - |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-1589 |
vulnerable | 2026-06-03 14:45:59.201020 |
Change wp-admin Login < 1.1.0 - Unauthenticated Arbitrary Settings Update
The Change wp-admin login WordPress plugin before 1.1.0 does not properly check for authorisation and is also missing CSRF check when updating its settings, which could allow unauthenticated users to change the settings. The attacked could also be performed via a CSRF vector
Published: 2022-05-30T08:36:04.000Z
Updated: 2024-08-03T00:10:03.626Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.