This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
BaseFortify.eu
basefortify.bsky.social
did:plc:giplx3mfo7nnb44f3yzhclu3
🚨 CVE-2026-2628 – CRITICAL (9.8)
Authentication Bypass in Microsoft 365 / Azure AD SSO Plugin for WordPress.
Unauthenticated attackers can log in as arbitrary users — including administrators.
Full report:
https://basefortify.eu/cve_reports/2026/03/cve-2026-2628.html
#CVE #WordPress #SSO #CyberSecurity #InfoSec
2026-03-03T11:20:13.850Z