CVE-2026-13741 | UnitedOver Digits Mobile Number Signup and Login Plugin up to 9.1.0.5 on WordPress Role Validation dig_update_wpwc_custom_fields digits_reg_userrole improper authorization
A vulnerability classified as critical was found in UnitedOver Digits Mobile Number Signup and Login Plugin up to 9.1.0.5 on WordPress. The affected element is the function dig_update_wpwc_custom_fields of the component Role Validation. Such manipulation of the argument digits_reg_userrole leads to improper authorization.
This vulnerability is traded as CVE-2026-13741. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More