A vulnerability was found in LoginPress Pro Plugin up to 6.2.3. It has been classified as critical. This impacts the function loginpress_on_github_login of the component GitHub OAuth Callback Handler. The manipulation of the argument email leads to improper authentication.

This vulnerability is referenced as CVE-2026-12597. Remote exploitation of the attack is possible. No exploit is available.