CVE-2021-24148

Posted on by admin

CVE-2021-24148

A business logic issue in the MStore API WordPress plugin, versions before 3.2.0, had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address.

Source: CVE-2021-24148

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다