Lucene search
K
IdehwebLogin With Phone Number

6 matches found

CVE
CVE
added 2022/03/14 2:41 p.m.87 views

CVE-2022-0593

The CVE-2022-0593 is linked to the WordPress plugin “Login with phone number” prior to version 1.3.7, where delete.php contains no authentication/authorization checks. This allows an unauthenticated remote attacker to delete plugin files, potentially causing DoS. Affected component: delete.php in...

6.5CVSS6.6AI score0.01419EPSS
CVE
CVE
added 2023/01/20 12:0 a.m.85 views

CVE-2023-23492

The CVE-2023-23492 entry concerns the WordPress plugin Login with Phone Number, version older than 1.4.2. Public data show conflicting vulnerability details across sources: NVD/NVD-derived records describe an authenticated SQL injection in the lwp_forgot_password action via the ID parameter, with...

8.8CVSS8.8AI score0.57397EPSS
CVE
CVE
added 2022/08/01 12:47 p.m.82 views

CVE-2022-0598

The CVE-2022-0598 entry concerns the WordPress plugin “Login with phone number” (versions before 1.3.8). The vulnerability arises from insufficient sanitisation/escaping of plugin settings, allowing high-privilege users to perform Cross-Site Scripting (XSS) attacks, even when unfiltered_html is d...

4.8CVSS4.8AI score0.00579EPSS
CVE
CVE
added 2024/09/14 12:31 p.m.59 views

CVE-2024-6482

CVE-2024-6482 : The WordPress plugin Login with phone number (versions

8.8CVSS8.7AI score0.00485EPSS
CVE
CVE
added 2023/09/13 2:54 a.m.57 views

CVE-2023-4916

CVE-2023-4916 affects the WordPress plugin Login with phone number . The root cause is missing nonce validation in the function lwp_update_password_action , enabling CSRF that allows unauthenticated attackers to change a user’s password if they can coerce an administrator into performing an actio...

8.8CVSS8.4AI score0.00324EPSS
CVE
CVE
added 2024/07/22 8:26 a.m.44 views

CVE-2024-37429

CVE-2024-37429: Stored XSS in the WordPress plugin Login with phone number (Hamid Alinia – idehweb), affected versions include 1.7.35 and earlier. Public details indicate the issue has been patched; remediation is to update to a newer version. Details on root cause or exact fixed version are not ...

5.9CVSS5.9AI score0.00263EPSS