WP Ultimate Dashboard Plugin Vulnerability
-
Just received a vulnerability alert related to this plugin and wanted to make all aware. Here are the details:
3.7 Medium Severity – CVSS 3.1 score
Secret Login Page Location Disclosure on Multisites vulnerability discovered by Naveen Muthusamy (Patchstack Alliance) in WordPress Plugin Ultimate Dashboard (versions <= 3.7.10) Naveen Muthusamy discovered and reported this Bypass Vulnerability vulnerability in WordPress Ultimate Dashboard Plugin. A bypass vulnerability could allow a malicious actor to bypass certain restrictions in the code. This vulnerability has not been known to be fixed yet.
Classification – Bypass Vulnerability
Publicly disclosed – December 5,2023
- The topic ‘WP Ultimate Dashboard Plugin Vulnerability’ is closed to new replies.
