CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

175 matches found

NVD•added 2026/01/22 5:16 p.m.•2 views

CVE-2025-69052

Missing Authorization vulnerability in FmeAddons Registration & Login with Mobile Phone Number for WooCommerce registration-login-with-mobile-phone-number allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Registration & Login with Mobile Phone Number for...

9.8CVSS0.0008EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:52 p.m.•1 views

CVE-2025-69052 WordPress Registration & Login with Mobile Phone Number for WooCommerce plugin <= 1.3.1 - Broken Access Control vulnerability

9.8CVSS5.9AI score0.0008EPSS

Exploits0References1

Positive Technologies•added 2026/01/22 12:0 a.m.•3 views

PT-2026-4140

5.4AI score0.0008EPSS

Exploits0References2

CVE•added 2026/01/17 8:24 a.m.•17 views

CVE-2025-10484

The CVE-2025-10484 entry concerns the Registration & Login with Mobile Phone Number for WooCommerce plugin (WordPress). Affected versions: all up to and including 1.3.1, where authentication bypass is achieved via the fma_lwp_set_session_php_fun() path, allowing unauthenticated users to impersona...

9.8CVSS5.5AI score0.0052EPSS

Exploits0References2

Positive Technologies•added 2026/01/17 12:0 a.m.•1 views

PT-2026-3355

Name of the Vulnerable Software and Affected Versions Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress versions prior to 1.3.2 Description The plugin does not properly verify a user’s identity prior to authentication, specifically through the fma lwp set session...

9.8CVSS5.3AI score0.0052EPSS

Exploits0References10

RedhatCVE•added 2026/01/07 9:19 a.m.•5 views

CVE-2024-2101

The Salon booking system WordPress plugin before 9.6.3 does not properly sanitize and escape the 'Mobile Phone' field when booking an appointment, allowing customers to conduct Stored Cross-Site Scripting attacks. The payload gets triggered when an admin visits the 'Customers' page and the...

5.7CVSS5.8AI score0.00665EPSS

Exploits2References1

Patchstack•added 2025/12/30 12:25 p.m.•3 views

WordPress Registration & Login with Mobile Phone Number for WooCommerce plugin <= 1.3.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Registration & Login with Mobile Phone Number for WooCommerce versions = 1.3.1...

9.8CVSS5.4AI score0.0008EPSS

Exploits0Affected Software1