miniOrange's Google Authenticator

Missing Authorization to Plugin Settings Change vulnerability <= 5.6.5

Factor Authentication plugin <= 5.6.1 Sensitive Data Exposure vulnerability <= 5.6.1

Broken Access Control vulnerability <= 5.6.1

Reflected CrossSite Scripting (XSS) vulnerability <= 5.5.7

Authenticated Stored CrossSite Scripting (XSS) vulnerability <= 5.5.5