A vulnerability was found in LoginPress Pro Plugin up to 6.2.3 and classified as critical. This affects the function
loginpress_on_discord_login of the component Discord OAuth Callback Handler. Executing a manipulation of the argument email can lead to improper authentication.
The identification of this vulnerability is CVE-2026-12595. The attack may be launched remotely. There is no exploit available.