CVE-2025-12822 | WP Login and Register using JWT Plugin up to 3.0.0 on WordPress API Key mo_jwt_generate_new_api_key authorization

November 18, 2025 Yanac

A vulnerability was found in WP Login and Register using JWT Plugin up to 3.0.0 on WordPress. It has been classified as problematic. Affected by this issue is the function mo_jwt_generate_new_api_key of the component API Key Handler. Performing manipulation results in missing authorization.

This vulnerability was named CVE-2025-12822. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More