Medium severity5.3NVD Advisory· Published Oct 10, 2022· Updated Jun 17, 2026
CVE-2022-2350
CVE-2022-2350
Description
The Disable User Login WordPress plugin through 1.0.1 does not have authorisation and CSRF checks when updating its settings, allowing unauthenticated attackers to block (or unblock) users at will.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Disable User Login WordPress plugindescription
- Range: <=1.0.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/de28543b-c110-4a9f-bfe9-febccfba3a96nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.