29May
CVE-2024-3050 | Paul Ryley Site Reviews Plugin up to 6.x on WordPress Header authentication spoofing
A vulnerability, which was classified as critical, was found in Paul Ryley Site Reviews Plugin up to 6.x on WordPress. Affected is an unknown function of the component Header Handler. The manipulation leads to authentication bypass by spoofing. This vulnerability is traded as CVE-2024-3050. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.