CVE-2025-14002 | WPCOM Member Plugin up to 1.7.16 on WordPress One-Time Password excessive authentication

A vulnerability was found in WPCOM Member Plugin up to 1.7.16 on WordPress and classified as problematic. Impacted is an unknown function of the component One-Time Password Handler. Executing manipulation can lead to improper restriction of excessive authentication attempts.

This vulnerability is registered as CVE-2025-14002. It is possible to launch the attack remotely. No exploit is available.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

CVE-2025-14002 | WPCOM Member Plugin up to 1.7.16 on WordPress One-Time Password excessive authentication

Post correlati

CVE-2024-22722 | Form Tools 3.1.1 Template Group Name injection

CVE-2024-8197 | freakingwildchild Visual Sound Plugin up to 1.03 on WordPress Setting cross-site request forgery

CVE-2024-31261 | Aakash Chakravarthy Announcer Plugin up to 6.0 on WordPress authorization

CVE-2024-35295 | Siemens Perfect Harmony GH180 up to 8.3.2 missing authentication (ssa-771113)