[HIGH] Authentication Bypass in extension "E-Mail MFA Provider" (mfa_email)

PKSA-qp7n-s4g1-wsjq CVE-2026-4208 GHSA-29r8-gvx4-r9w3

Affected package: ralffreit/mfa-email

Affected version: <=2.0.0

Reported by:
GitHub