Lucene search
Login With Otp Over Sms, Email, Whatsapp And Google Authenticator Security Vulnerabilities
cve
The Login With OTP Over SMS, Email, WhatsApp and Google Authenticator WordPress plugin before 1.0.8 does not escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed
4.8CVSS
4.8AI Score
0.001EPSS
2022-06-27 09:15 AM
50
9
cve
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in miniOrange miniOrange's Google Authenticator β WordPress Two Factor Authentication β 2FA , Two Factor, OTP SMS and Email | Passwordless login.This issue affects miniOrange's Google Authenticator β WordPress Two Factor Authe...
8.1CVSS
7.5AI Score
0.001EPSS
2023-12-29 10:15 AM
53