Description

WordPress Plugin Custom Login Page Customizer-LoginPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Custom Login Page Customizer-LoginPress version 1.1.15 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.1.16 or latest

References

https://plugins.svn.wordpress.org/loginpress/trunk/readme.txt

Related Vulnerabilities

WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1)

WordPress Plugin WP SVG Icons Cross-Site Request Forgery (3.2.1)

WordPress Plugin Duplicator-WordPress Migration Remote Code Execution (1.2.40)

WordPress Plugin YITH WooCommerce Order Tracking Security Bypass (1.2.10)

WordPress Plugin MW WP Form Cross-Site Scripting (2.10.0)

Severity

High

Tags

Missing Update