Critical 9.8
2025-08-28< 1.7.0
RingCentral Communications 1.5 - 1.6.8 - Missing Server‑Side Verification to Authentication Bypass via ringcentral_admin_login_2fa_verify Function
RingCentral Communications Plugin – FREE
Minimum safe version
1.7.0
Update to 1.7.0 or later to address 1 fixable vulnerability
Latest available1.7.0 ✓⚠ 1 vulnerability has no fix
High 7.1 Unfixed
2024-12-02≤ 1.7.0
WordPress RingCentral Communications plugin <= 1.7.0 - CSRF to Stored XSS vulnerability