CVE-2023-23492

The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action.
References
Link Resource
https://www.tenable.com/security/research/tra-2023-3 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:login_with_phone_number_project:login_with_phone_number:*:*:*:*:*:wordpress:*:*

Information

Published : 2023-01-20 07:15

Updated : 2023-01-27 02:55


NVD link : CVE-2023-23492

Mitre link : CVE-2023-23492

Products Affected
No products.
CWE