WordPress.WPGateway.Plugin.Authentication.Bypass

description-logoDescription

This indicates an attack attempt to exploit an Authentication Bypass vulnerability in WordPress WPGateway Plugin.
The vulnerability is due to a validation error in the application when handling a request. A remote unauthenticated attacker may be able to exploit this to add a malicious administrator user on the vulnerable system.

description-logoOutbreak Alert

The WPGateway plugin vulnerability can allow an unauthenticated remote attacker to add a malicious user with admin privileges and completely take over the WordPress sites.

View the full Outbreak Alert Report

affected-products-logoAffected Products

WordPress WPGateway Plugin <= 3.5

Impact logoImpact

Security Bypass: Remote attackers can bypass security features of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

Version Updates

Date Version Detail
2022-09-17 0.00329

CVE References

CVE-2022-3180