CVE-2024-9820 - "Telegram WP 2FA Two-Factor Authentication Bypass Vulnerability"

CVE ID : CVE-2024-9820
Published : Oct. 15, 2024, 2:15 a.m. | 24 minutes ago
Description : The WP 2FA with Telegram plugin for WordPress is vulnerable to Two-Factor Authentication Bypass in versions up to, and including, 3.0. This is due to the two-factor code being stored in a cookie, which makes it possible to bypass two-factor authentication.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...