CVE-2025-4094 – “Acunetix DIGITS WordPress OTP Brute Force Vulnerability”

May 22, 2025

CVE ID : CVE-2025-4094

Published : May 21, 2025, 6:16 a.m. | 20 hours, 43 minutes ago

Description : The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not rate limit OTP validation attempts, making it straightforward for attackers to bruteforce them.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-34025 – Versa Concerto Privilege Escalation and Container Escape Vulnerability

Next Article CVE-2025-4123 – Grafana Cross-Site Scripting (XSS) via Client Path Traversal and Open Redirect

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Google DeepMind’s CEO says Gemini’s upgrades could lead to AGI — but he still thinks society isn’t “ready for it”

Windows 11 is getting AI Actions in File Explorer — here’s how to try them right now

Is The Alters on Game Pass?

I asked Copilot’s AI to predict the outcome of the Europa League final, and now I’m just sad

Celebrating GAAD by Committing to Universal Design: Equitable Use

Celebrating GAAD by Committing to Universal Design: Equitable Use

GAAD and Universal Design in Healthcare – A Deeper Look

GAAD and Universal Design in Pharmacy – A Deeper Look

Google DeepMind’s CEO says Gemini’s upgrades could lead to AGI — but he still thinks society isn’t “ready for it”

Google DeepMind’s CEO says Gemini’s upgrades could lead to AGI — but he still thinks society isn’t “ready for it”

Windows 11 is getting AI Actions in File Explorer — here’s how to try them right now

Is The Alters on Game Pass?

CVE-2025-4094 – “Acunetix DIGITS WordPress OTP Brute Force Vulnerability”

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2024-9544 – MapSVG WordPress Stored Cross-Site Scripting Vulnerability

Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind

Config 2024: How we redesigned Figma

CVE-2025-46375 – Apache Struts Deserialization Vulnerability

Capgemini e MongoDB insieme per liberare le migliori energie dei clienti

Build low-latency, resilient applications with Amazon MemoryDB Multi-Region

Parallel selenium UI test failure rate has increase when compared to sequential execution

Bringing Terminal Typography to Life

Why The Modern Google Workspace Needs Unified Security

CVE-2025-4094 – “Acunetix DIGITS WordPress OTP Brute Force Vulnerability”

Related Posts