CVE-2022-3206 Information

Description

The Passster WordPress plugin before 3.5.5.5.2 stores the password inside a cookie named \passster\ using base64 encoding method which is easy to decode. This puts the password at risk in case the cookies get leaked.

Reference

https://wpscan.com/vulnerability/a8963750-62bf-403e-a906-94f371ed2a7a