2020-10-02 04:04:01
mitre
PUBLISHED
The wpo365-login plugin before v11.7 for WordPress allows use of a symmetric algorithm to decrypt a JWT token. This leads to authentication bypass.