Vulnerabilities > Idehweb > Login With Phone Number > 1.4.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-13 | CVE-2023-4916 | Unspecified vulnerability in Idehweb Login With Phone Number The Login with phone number plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.6. | 8.8 |
| 2023-01-20 | CVE-2023-23492 | SQL Injection vulnerability in Idehweb Login With Phone Number The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action. | 8.8 |