More than 30,000 WordPress sites using miniOrange's Social Login and Register plugin could have their user accounts exposed with the exploitation of a critical authentication bypass vulnerability, tracked as CVE-2023-2982.
Article Link: WordPress plugin vulnerability puts user accounts at risk | SC Media