cyberlord92
Security Productsindividual-dev
Latest CVEs
The 15 most recently published vulnerabilities affecting cyberlord92.
- CVE-2026-2628All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login <= 2.2.5 - Authentication Bypass9.8
- CVE-2026-1279Employee Directory <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'form_title' Shortcode Attribute6.4
- CVE-2025-10753OAuth Single Sign On – SSO (OAuth Client) <= 6.26.14 - Missing Authorization5.3
- CVE-2026-0725Integrate Dynamics 365 CRM <= 1.1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Field Mapping Configuration4.4
- CVE-2025-14948miniOrange OTP Verification and SMS Notification for WooCommerce <= 4.3.8 - Missing Authorization to Unauthenticated Notification Settings Modification5.3
- CVE-2025-12822WP Login and Register using JWT <= 3.0.0 - Missing Authorization to Authenticated (Subscriber+) API Key Exposure4.3
- CVE-2025-11255Password Policy Manager | Password Manager <= 2.0.5 - Missing Authorization to Authenticated (Subscriber+) Configuration Log Out4.3
- CVE-2025-10750PowerBI Embed Reports <= 1.2.0 - Unauthenticated Sensitive Information Disclosure5.3
- CVE-2025-10648Login with YourMembership - YM SSO Login <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes'5.3
- CVE-2025-9485OAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Authentication Bypass via get_resource_owner_from_id_token()9.8
- CVE-2025-10746Integrate Dynamics 365 CRM <= 1.0.9 - Missing Authorization6.5
- CVE-2025-10752OAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Cross-Site Request Forgery4.3
- CVE-2025-7665Miniorange OTP Verification with Firebase 3.1.0 - 3.6.2 - Unauthenticated Privilege Escalation8.1
- CVE-2025-9891User Sync – Remote User Sync <= 1.0.2 - Cross-Site Request Forgery to Plugin Deactivation4.3
- CVE-2025-8420Multiple Plugins by emarket-design <= Multiple Versions - Unauthenticated Limited Remote Code Execution8.1