Medium severity5.9NVD Advisory· Published Oct 10, 2022· Updated Jun 17, 2026
CVE-2022-2891
CVE-2022-2891
Description
The WP 2FA WordPress plugin before 2.3.0 uses comparison operators that don't mitigate time-based attacks, which could be abused to leak information about the authentication codes being compared.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/301b3dce-2584-46ec-92ed-1c0626522120nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.