VYPR

Miniorange Malware Protection

by WordPress

CVEs (2)

  • CVE-2024-2172CriMar 13, 2024
    risk 0.64cvss 9.8epss 0.02

    The Malware Scanner plugin and the Web Application Firewall plugin for WordPress (both by MiniOrange) are vulnerable to privilege escalation due to a missing capability check on the mo_wpns_init() function in all versions up to, and including, 4.7.2 (for Malware Scanner) and…

  • CVE-2023-52176MedJun 4, 2024
    risk 0.34cvss 5.3epss 0.00

    Authentication Bypass by Spoofing vulnerability in miniorange Malware Scanner allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Malware Scanner: from n/a through 4.7.1.