WordPress.Plugin.Userpro.Authentication.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in WordPress Plugin Userpro.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted HTTP request. An attacker can exploit this to gain administrator privileges in the affected system.
Affected Products
UserPro plugin before 4.9.17.1 for WordPress
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor:
https://codecanyon.net/item/userpro-user-profiles-with-social-login/5958681
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |