2025-11-24 12:58:37
WPScan
PUBLISHED
The WP 2FA WordPress plugin does not generate backup codes with enough entropy, which could allow attackers to bypass the second factor by brute forcing them