← Back to CVE List

CVE-2023-23492

Published: 2023-01-20T19:15Z
Last Modified: 2025-04-03T20:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt