Passwordless Login with OTP / SMS & Email – Account Kit

Vulnerabilities 3Slug fb-account-kit-loginLatest version 1.2.3Plugin page →

Minimum safe version

—

No explicit fix version available

Latest available1.2.3 ✗⚠ 3 vulnerabilities have no fix

N/A Unfixed

2023-07-18≤ 1.2.3

WordPress Passwordless Login with OTP / SMS & Email – Account Kit Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A Unfixed Closed

2022-02-28≤ 1.2.3

WordPress Passwordless Login with OTP / SMS & Email – Account Kit plugin <= 1.2.3 - Sensitive Information Disclosure vulnerability

Patchstack

N/A Unfixed Closed

2022-02-28≤ 1.2.3

WordPress Passwordless Login with OTP / SMS & Email – Account Kit plugin <= 1.2.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack