CVE-2026-42731 | miniOrange OTP Verification Plugin up to 5.4.9 on WordPress privileges assignment

A vulnerability, which was classified as critical, was found in miniOrange OTP Verification Plugin up to 5.4.9 on WordPress. This issue affects some unknown processing. The manipulation results in incorrect privilege assignment.

This vulnerability was named CVE-2026-42731. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More