CVE-2025-12374 | Email Verification, Email OTP, Block Spam Email, Passwordless Login, Hide Login, Magic Login Plugin user_verification_form_wrap_process_otpLogin improper authentication

A vulnerability was found in Email Verification, Email OTP, Block Spam Email, Passwordless Login, Hide Login, Magic Login Plugin up to 2.0.39 on WordPress. It has been classified as critical. This issue affects the function user_verification_form_wrap_process_otpLogin. Performing manipulation results in improper authentication.

This vulnerability is reported as CVE-2025-12374. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More