WordPress InfiniteWP 漏洞列表

共找到 1 个与 WordPress InfiniteWP 相关的漏洞

📅 加载漏洞趋势中...

CVE-2020-8772: WordPress InfiniteWP <1.9.4.5 - Authorization Bypass POC

日期: 2025-08-01 | 影响软件: WordPress InfiniteWP

WordPress InfiniteWP plugin before 1.9.4.5 for WordPress contains an authorization bypass vulnerability via a missing authorization check in iwp_mmb_set_request in init.php. An attacker who knows the username of an administrator can log in, thereby making it possible to obtain sensitive information, modify data, and/or execute unauthorized operations.