WordPress released a security update to address a Critical vulnerability in miniOrange's Social Login and Register plugin for WordPress. Exploitation of this vulnerability could allow an unauthenticated attacker to gain access to any account on a site including accounts used to administer the site, if the attacker knows, or can find, the associated email address.

For a complete description of the vulnerabilities and affected systems go to CVE-2023-2982 Detail.

IT Security 

Read more about IT Security service offerings.