CVE-2025-12628 | WP 2FA Plugin up to 2.x on WordPress Backup Code entropy

Inserito da Angelo Barbosa | Nov 24, 2025 | CVE

A vulnerability was found in WP 2FA Plugin up to 2.x on WordPress. It has been classified as problematic. The impacted element is an unknown function of the component Backup Code Handler. This manipulation causes insufficient entropy.

This vulnerability appears as CVE-2025-12628. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2025-12628 | WP 2FA Plugin up to 2.x on WordPress Backup Code entropy

Post correlati

CVE-2025-5806 | Jenkins Gatling Plugin 136.vb_9009b_3d33a_e Content-Security-Policy protection mechanism

CVE-2024-37507 | Themewinter Eventin Plugin up to 3.3.57 on WordPress cross site scripting

CVE-2024-43701 | Imagination Technologies Graphics DDK up to 24.2 RTM1 GPU System Call use after free

CVE-2023-22649 | Rancher log file