Skip to Content
Prophaze Prophaze
  • Products
    • API Security
    • WAF
      • Prophaze Hybrid WAF
      • Cloud WAF
      • Kubernetes WAF
      • On Premises WAF
    • Bot Protection
    • Layer 7 DDoS Protection
    • CDN
  • Solution
    • WAF-as-a-Service
    • MSP and MSSP
    • By Industry
      • E-Commerce
      • Healthcare
      • Education
      • Financial Services
    • By Cloud
      • Containers Service Mesh
      • Google Cloud
      • Microsoft Azure
      • AWS
      • SaaS
      • Hybrid Cloud
      • Private Cloud
  • Partners
  • Pricing
  • Company
    • About Us
    • Why choose Us?
    • How it works
    • Integration
    • Careers
  • Resources
    • Case Studies
    • Resource library
      • KB Articles
      • Media
        • Press Release
    • Blog
    • Learning Center
    • Common Vulnerabilities and Exposures
    • Docs
    • FAQ
  • Contact Us
Free Trial
Free Trial
Under attack ?

Simple JWT Login Plugin up to 3.2.x on WordPress Password Creation str_shuffle inadequate encryption

  • Virtual Patching
  • December 30, 2021
  • 8:12 am

A vulnerability, which was classified as problematic, has been found in Simple JWT Login Plugin up to 3.2.x on WordPress (WordPress Plugin). This issue affects the function str_shuffle of the component Password Creation. Upgrading to version 3.3.0 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at plugins.trac.wordpress.org. The best possible mitigation is suggested to be upgrading to the latest version.

  • Virtual Patching
  • December 30, 2021
  • 8:12 am

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2025-23208 : ZOT UP TO 2.1.1 API SETUSERGROUPS PRIVILEGES MANAGEMENT

CVE-2025-23208 : ZOT UP TO 2.1.1 API SETUSERGROUPS PRIVILEGES MANAGEMENT

Description zot is a production-ready vendor-neutral OCI image registry. The group data stored for users in the boltdb database (meta.db)

Learn more
CVE-2024-12867 : ARCTIC SECURITY ARCTIC HUB UP TO 5.5.1872 CONFIGURATION SERVER-SIDE REQUEST FORGERY

CVE-2024-12867 : ARCTIC SECURITY ARCTIC HUB UP TO 5.5.1872 CONFIGURATION SERVER-SIDE REQUEST FORGERY

Description Server-Side Request Forgery in URL Mapper in Arctic Security’s Arctic Hub versions 3.0.1764-5.6.1877 allows an unauthenticated remote attacker to

Learn more
CVE-2024-12840 : RED HAT SATELLITE HTTP PROXY SERVER-SIDE REQUEST FORGERY

CVE-2024-12840 : RED HAT SATELLITE HTTP PROXY SERVER-SIDE REQUEST FORGERY

Description A server-side request forgery exists in Satellite. When a PUT HTTP request is made to /http_proxies/test_connection, when supplied with

Learn more

Why Prophaze ?
Request Demo

Questions
Partners
Privacy Policy
Terms of Service

Plans
WAF Pricing
Blog
CVEs
Case Studies
Make in India WAF
WAF Pricing
Free WAF
Webinar
System Status
Community

Protection from all threats
DDoS protection
Automated security policy
AI firewall
Zero-configuration
Dashboard
API security
Compliance
Security updates
Virtual patching

Contact Prophaze Labs:

USA : Suite 217, 691 S Milpitas Blvd,

Milpitas, CA - 95035

Mobile: +1 831- 217-6365

India : +91 7994 008 420

Australia: +61 8 7094 2020

Email : contact@prophaze.com

© 2025 Copyright © Prophaze Technologies Pvt. Ltd. All rights reserved. Terms & Conditions | Legal and Privacy | Manage Cookies