Filtered by vendor Login With Phone Number Project
Subscribe
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-23492 | 1 Login With Phone Number Project | 1 Login With Phone Number | 2023-01-27 | N/A | 8.8 HIGH |
| The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action. | |||||
| CVE-2022-0598 | 1 Login With Phone Number Project | 1 Login With Phone Number | 2022-10-25 | N/A | 4.8 MEDIUM |
| The Login with phone number WordPress plugin before 1.3.8 does not sanitise and escape plugin settings which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. | |||||