Filtered by vendor Login Configurator Project Subscriptions
Filtered by product Login Configurator Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-1893 1 Login Configurator Project 1 Login Configurator 2024-11-05 6.1 Medium
The Login Configurator WordPress plugin through 2.1 does not properly escape a URL parameter before outputting it to the page, leading to a reflected cross-site scripting vulnerability targeting site administrators.
CVE-2023-34369 1 Login Configurator Project 1 Login Configurator 2024-09-26 5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GrandSlambert Login Configurator plugin <= 2.1 versions.
CVE-2023-34175 1 Login Configurator Project 1 Login Configurator 2024-09-24 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in GrandSlambert Login Configurator plugin <= 2.1 versions.