Vulnerabilities (CVE)

Filtered by vendor Login With Phone Number Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0598 1 Login With Phone Number Project 1 Login With Phone Number 2024-11-21 N/A 4.8 MEDIUM
The Login with phone number WordPress plugin before 1.3.8 does not sanitise and escape plugin settings which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.