WordPress Plugin Vulnerabilities

OTP Login Woocommerce & Gravity Forms < 2.3 - Unauthenticated Privilege Escalation

Description

The plugin returns generated OTP codes for users to use when using the logging in via phone number feature, allowing unauthenticated users to retrieve them for arbitrary accounts and be able to login as any user, including administrator granted they know the related phone number.

Affects Plugins

Plugin icon
mobile-login-woocommerce
Fixed in 2.3

References

CVE
CVE-2023-2706

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
8.1 (high)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
3d69ed59-0a0a-4db3-a18b-94c02bd14ede

Timeline

Publicly Published
2023-05-16 (about 2 years ago)
Added
2023-05-17 (about 2 years ago)
Last Updated
2023-05-17 (about 2 years ago)

Other

Published
Title
Published
2025-03-07
Title
Post Meta Data Manager <= 1.4.4 - Authentciated (Admin+) Multisite Privilege Escalation
Published
2022-12-12
Title
iubenda < 3.3.3 - Subscriber+ Privileges Escalation to Admin
Published
2025-05-22
Title
Hospital Management System <= 47.0(20-11-2023) - Authenticated (Subscriber+) Privilege Escalation
Published
2025-06-10
Title
CubeWP – All-in-One Dynamic Content Framework < 1.1.24 - Authenticated (Subscriber+) Privilege Escalation
Published
2016-03-03
Title
Bulk Delete <= 5.5.3 - Privilege Escalation