VYPR

Lock User Account

by WordPress

Source repositories

CVEs (1)

  • CVE-2024-11197MedNov 21, 2024
    risk 0.27cvss 4.2epss 0.00

    The Lock User Account plugin for WordPress is vulnerable to user lock bypass in all versions up to, and including, 1.0.5. This is due to permitting application password logins when user accounts are locked. This makes it possible for authenticated attackers, with existing…