{"vulnerability": "CVE-2026-12988", "sightings": [{"uuid": "5538fefd-e1f2-4a1c-adbf-0b55fe764756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12988", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqlw277c6d2g", "content": "CVE-2026-12988 - WP 2FA\nCVE ID : CVE-2026-12988\n \n Published : 14. Juli 2026 06:17 | 1\u00a0Stunde, 13\u00a0Minuten ago\n \n Description : The WP 2FA WordPress plugin before 3.1.1.2 does not verify that the email address supplied during two-factor authentication setup belongs to the user,...", "creation_timestamp": "2026-07-14T09:40:46.553741Z"}]}