Saleh Tarawneh - Security Researcher - Exploit Intelligence Platform

CVE-2025-4094 NOMISEC CRITICAL WORKING POC

DIGITS: WordPress Mobile <8.4.6.1 - Info Disclosure

The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not rate limit OTP validation attempts, making it straightforward for attackers to bruteforce them.

2 stars

CVSS 9.8

View Code

CVE-2025-4094 NOMISEC CRITICAL WORKING POC

DIGITS: WordPress Mobile <8.4.6.1 - Info Disclosure

The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not rate limit OTP validation attempts, making it straightforward for attackers to bruteforce them.

1 stars

CVSS 9.8

View Code

CVE-2025-4094 EXPLOITDB CRITICAL text WORKING POC

DIGITS: WordPress Mobile <8.4.6.1 - Info Disclosure

The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not rate limit OTP validation attempts, making it straightforward for attackers to bruteforce them.

CVSS 9.8

View Code