CVE-2022-44589

Name of the Vulnerable Software and Affected Versions miniOrange's Google Authenticator – WordPress Two Factor Authentication – 2FA , Two Factor, OTP SMS and Email | Passwordless login versions n/a through 5.6.1

Description The issue is related to the exposure of sensitive information to an unauthorized actor. This affects the miniOrange's Google Authenticator – WordPress Two Factor Authentication – 2FA , Two Factor, OTP SMS and Email | Passwordless login. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions n/a through 5.6.1, update to a version later than 5.6.1 to resolve the issue. At the moment, there is no information about additional mitigation measures.