Security Advisory

CVE-2024-5868

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-15 03:35:10
Last updated 2026-04-08 17:10:35
Assigner Wordfence
State PUBLISHED

Description

The WooCommerce - Social Login plugin for WordPress is vulnerable to Email Verification in all versions up to, and including, 2.6.2 via the use of insufficiently random activation code. This makes it possible for unauthenticated attackers to bypass the email verification.