Unrated severityNVD Advisory· Published Oct 2, 2020· Updated Aug 4, 2024
CVE-2020-26511
CVE-2020-26511
Description
The wpo365-login plugin before v11.7 for WordPress allows use of a symmetric algorithm to decrypt a JWT token. This leads to authentication bypass.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/wpo365-login plugindescription
Patches
Vulnerability mechanics
References
4- plugins.trac.wordpress.org/changeset/2388992/mitrex_refsource_MISC
- wordpress.org/plugins/wpo365-login/mitrex_refsource_MISC
- wpvulndb.com/vulnerabilities/10418mitrex_refsource_MISC
- www.wpo365.com/change-log/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.