WordPress - Registration & Login With Mobile Phone Number For WooCommerce - CRITICAL - CVE-2025-10484. The Registration & Login with Mobile Phone Number plugin for WooCommerce, up to version 1.3.1, is susceptible to an authentication bypass. This vulnerability stems from the plugin's failure to correctly validate user identities before allowing authentication. An unauthenticated attacker can exploit this weakness to gain unauthorized access to any user account, including those of administrators, without requiring a valid password, creating significant security risks for websites relying on this plugin.