WP 2FA – Two-factor authentication for WordPress, 187b426eea97d75fad4202e60fc8c41a3407977f

CVE, Research URL: 187b426eea97d75fad4202e60fc8c41a3407977f
Home page URL: Security reports for WP 2FA – Two-factor authentication for WordPress
Application: WP 2FA – Two-factor authentication for WordPress
Published on: Apr 29, 2022
Research Description: WP 2FA – Two-factor authentication for WordPress [wp-2fa] < 2.2.0 WordPress WP 2FA plugin <= 2.1.0 - Arbitrary 2FA Disabling via Insecure Direct Object References (IDOR) vulnerability Arbitrary 2FA Disabling via Insecure Direct Object References (IDOR) vulnerability discovered by Maycon Vitali in WordPress WP 2FA plugin (versions <= 2.1.0).
Affected versions: max 2.2.0.
Status: vulnerable

WP 2FA &#8211; Two-factor authentication for WordPress, 187b426eea97d75fad4202e60fc8c41a3407977f