PT-2026-4140

Missing Authorization vulnerability in FmeAddons Registration & Login with Mobile Phone Number for WooCommerce registration-login-with-mobile-phone-number allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Registration & Login with Mobile Phone Number for...

CVE-2025-10484

The CVE-2025-10484 entry concerns the Registration & Login with Mobile Phone Number for WooCommerce plugin (WordPress). Affected versions: all up to and including 1.3.1, where authentication bypass is achieved via the fma_lwp_set_session_php_fun() path, allowing unauthenticated users to impersona...

PT-2026-3355

Name of the Vulnerable Software and Affected Versions Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress versions prior to 1.3.2 Description The plugin does not properly verify a user’s identity prior to authentication, specifically through the fma lwp set session...

EUVD-2024-30309

Malicious code in bioql PyPI...

PT-2025-35386

Name of the Vulnerable Software and Affected Versions: Hamid Alinia versions n/a through 1.6.93 Description: A missing authorization issue exists in the Login with phone number functionality. Recommendations: Update to a version later than 1.6.93...

WordPress WooCommerce OTP Login With Phone Number, OTP Verification plugin <= 1.8.47 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Login with phone number versions = 1.8.47...

WordPress plugin Login with phone number 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

WordPress Login with Phone Number plugin <= 1.6.93 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Login with phone number versions = 1.6.93...

VulnCheck KEV: CVE-2024-32832

Login with phone number up to and including 1.6.93 is vulnerable to a security bypass in an unspecified function that could allow unauthenticated adversaries to perform unauthorized actions...

VulnCheck KEV: CVE-2024-32507

Improper Privilege Management vulnerability in Hamid Alinia - idehweb Login with phone number allows Privilege Escalation.This issue affects Login with phone number: from n/a through 1.7.16...

PT-2023-31077 · WordPress · Login With Phone Number Plugin For Wordpress

Name of the Vulnerable Software and Affected Versions: Login with phone number plugin for WordPress versions up to, and including, 1.5.6 Description: The issue is related to Cross-Site Request Forgery due to missing nonce validation on the lwp update password action function. This allows...

CVE-2022-0593

The Login with phone number WordPress plugin before 1.3.7 includes a file delete.php with no form of authentication or authorization checks placed in the plugin directory, allowing unauthenticated user to remotely delete the plugin files leading to a potential Denial of Service situation...

Car Dot App Has Logic Design Flaws

Car Dot APP is a mobile APP product specially created for car owner users, dedicated to providing professional car services. A logical design vulnerability exists in CarDotDot APP. The attacker obtains the corresponding data packets through the cell phone number login function, and then can repla...

Yikang to Home Android APP has arbitrary cell phone number login vulnerability

Yikang to Home Android APP is mobile online pharmacy shopping software. There is an arbitrary cell phone number login vulnerability in Yikang to Home Android APP. An attacker can log in to any account by capturing a packet and obtaining a verification code...