WordPress Login With Otp Plugin
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in WordPress Login With Otp Plugin.
By the Year
In 2026 there have been 0 vulnerabilities in WordPress Login With Otp Plugin. Login With Otp Plugin did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 8.10 |
It may take a day or so for new Login With Otp Plugin vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent WordPress Login With Otp Plugin Security Vulnerabilities
LoginWithOTPPlugin WP Auth Bypass via Weak OTP (<=1.4.2)
CVE-2024-11178
8.1 - High
- December 06, 2024
The Login With OTP plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.4.2. This is due to the plugin generating too weak OTP, and theres no attempt or time limit. This makes it possible for unauthenticated attackers to generate and brute force the 6-digit numeric OTP that makes it possible to log in as any existing user on the site, such as an administrator, if they have access to the email.
Authentication Bypass Using an Alternate Path or Channel
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for WordPress Login With Otp Plugin or by WordPress? Click the Watch button to subscribe.
