Wpwhitesecurity Wp_2fa

3 CVEs affecting Wpwhitesecurity Wp_2fa. Latest disclosed: 2024-01-11. Critical: 0, High: 0.

Top CVEs affecting Wpwhitesecurity Wp_2fa
CVESeverityScorePublishedSummary
CVE-2022-1527Medium6.12022-05-30The WP 2FA WordPress plugin before 2.2.1 does not sanitise and escape a parameter before outputting it back in an admin page, leading to a Reflected Cross-Site…
CVE-2022-2891Medium5.92022-10-10The WP 2FA WordPress plugin before 2.3.0 uses comparison operators that don't mitigate time-based attacks, which could be abused to leak information about the…
CVE-2023-6506Medium4.32024-01-11The WP 2FA – Two-factor authentication for WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and includin…