0.002 Low
EPSS
Percentile
58.6%
The plugin does not properly verify the user through its Facebook login, which could allow attackers to login as any user knowing their email address