Filtered by vendor Wpbrigade
Subscriptions
Filtered by product Loginpress
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-41839 | 1 Wpbrigade | 1 Loginpress | 2024-11-21 | 5.3 Medium |
| Broken Access Control vulnerability in WordPress LoginPress plugin <= 1.6.2 on WordPress leading to unauth. changing of Opt-In or Opt-Out tracking settings. | ||||
| CVE-2022-0347 | 1 Wpbrigade | 1 Loginpress | 2024-11-21 | 6.1 Medium |
| The LoginPress | Custom Login Page Customizer WordPress plugin before 1.5.12 does not escape the redirect-page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting | ||||
| CVE-2019-15872 | 1 Wpbrigade | 1 Loginpress | 2024-11-21 | N/A |
| The LoginPress plugin before 1.1.4 for WordPress has SQL injection via an import of settings. | ||||
| CVE-2019-15871 | 1 Wpbrigade | 1 Loginpress | 2024-11-21 | N/A |
| The LoginPress plugin before 1.1.4 for WordPress has no capability check for updates to settings. | ||||
Page 1 of 1.