CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31341 – WordPress User Profile Builder plugin <= 3.11.2 - Bypass Vulnerability vulnerability
https://notcve.org/view.php?id=CVE-2024-31341
05 Apr 2024 — Insufficient Verification of Data Authenticity vulnerability in Cozmoslabs Profile Builder allows Functionality Bypass.This issue affects Profile Builder: from n/a through 3.11.2. La vulnerabilidad de verificación insuficiente de autenticidad de datos en Cozmoslabs Profile Builder permite omitir la funcionalidad. Este problema afecta a Profile Builder: desde n/a hasta 3.11.2. The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to ... • https://patchstack.com/database/vulnerability/profile-builder/wordpress-user-profile-builder-plugin-3-11-2-bypass-vulnerability-vulnerability?_s_id=cve • CWE-345: Insufficient Verification of Data Authenticity CWE-639: Authorization Bypass Through User-Controlled Key •