Vulnerabilities > Idehweb > Login With Phone Number > 1.4.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-22 | CVE-2024-37429 | Unspecified vulnerability in Idehweb Login With Phone Number Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hamid Alinia – idehweb Login with phone number allows Stored XSS.This issue affects Login with phone number: from n/a through 1.7.35. | 4.8 |
| 2023-01-20 | CVE-2023-23492 | SQL Injection vulnerability in Idehweb Login With Phone Number The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action. | 8.8 |