Filtered by vendor Weblizar Subscriptions
Filtered by product Admin Custom Login Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-34628 1 Weblizar 1 Admin Custom Login 2024-11-21 8.8 High
The Admin Custom Login WordPress plugin is vulnerable to Cross-Site Request Forgery due to the loginbgSave action found in the ~/includes/Login-form-setting/Login-form-background.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.2.7.
CVE-2017-20098 1 Weblizar 1 Admin Custom Login 2024-11-21 3.5 Low
A vulnerability was found in Admin Custom Login Plugin 2.4.5.2. It has been classified as problematic. Affected is an unknown function. The manipulation leads to basic cross site scripting (Persistent). It is possible to launch the attack remotely.