ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MainWP Child plugin <=3.4.4 - Authentication Bypass vulnerability

Product
MainWP Child
Description
Authentication Bypass vulnerability found by Slavco in WordPress MainWP Child plugin (versions <=3.4.4).
Solution
Update the WordPress MainWP Child plugin to the latest available version (at least 3.4.5).
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
Plugin changelog
Article by Slavco
CVE
Name CVE-N/A
Versions
Affected In <=3.4.4
Fixed In 3.4.5
Disclosure date
2018-03-02
Credits
Slavco
Submitter
ThreatPress