WordPress.WPGateway.Plugin.Authentication.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass vulnerability in WordPress WPGateway Plugin.
The vulnerability is due to a validation error in the application when handling a request. A remote unauthenticated attacker may be able to exploit this to add a malicious administrator user on the vulnerable system.
Outbreak Alert
The WPGateway plugin vulnerability can allow an unauthenticated remote attacker to add a malicious user with admin privileges and completely take over the WordPress sites.
Affected Products
WordPress WPGateway Plugin <= 3.5
Impact
Security Bypass: Remote attackers can bypass security features of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
Version Updates
Date | Version | Detail |
---|---|---|
2022-09-17 | 0.00329 |