🔍 What is Digits?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-4094

CRITICAL CVSS 9.8 May 21, 2025

The DIGITS WordPress plugin before version 8.4.6.1 lacks rate limiting on OTP validation attempts, allowing attackers to brute-force one-time passwords and potentially gain unauthorized access. This a...

CVE-2024-0203

HIGH CVSS 8.8 Mar 7, 2024

The Digits WordPress plugin has a CSRF vulnerability that allows attackers to change user roles to administrator by tricking an admin into clicking a malicious link. This affects all WordPress sites u...

📦 Digits

🔍 What is Digits?

🛡️ Security Overview

⚠️ Known Vulnerabilities

CVE-2025-4094

CVE-2024-0203