Known Vulnerabilities for WP-WebAuthn by Axton
Listed below are 1 of the newest known vulnerabilities associated with "WP-WebAuthn" by "Axton".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-2800 json | Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability was fixed in Firefox 148 and Thunderbird ... | Not Provided | 2026-02-24 | 2026-04-13 |
| CVE-2025-24180 json | The issue was addressed with improved input validation. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS S... | Not Provided | 2025-03-31 | 2026-04-02 |
| CVE-2025-13910 json | The WP-WebAuthn plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the `wwa_auth` AJAX end... | Not Provided | 2026-03-21 | 2026-04-08 |
| CVE-2025-10530 json | Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability was fixed in Firefox 143 and Thunderbird ... | Not Provided | 2025-09-16 | 2026-04-13 |
| CVE-2025-6433 json | If a user visited a webpage with an invalid TLS certificate, and granted an exception, the webpage was able to provide a WebA... | Not Provided | 2025-06-24 | 2026-04-13 |
| CVE-2024-47650 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Axton WP-WebAuthn wp-we... | Not Provided | 2024-10-06 | 2026-04-23 |
| CVE-2024-9023 json | The WP-WebAuthn plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wwa_login_form shortcode i... | Not Provided | 2024-09-28 | 2026-04-08 |