Description

WordPress Plugin WP Custom Admin Login Page Logo is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin WP Custom Admin Login Page Logo version 1.4.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.2 or latest

References

https://plugins.svn.wordpress.org/wp-custom-login-page-logo/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin WP Favorite Posts Cross-Site Scripting (1.6.5)

PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-3379)

Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-1042)

Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-7930)

WordPress Plugin Visual Form Builder Multiple Cross-Site Scripting Vulnerabilities (2.8.6)

Severity

High

Tags

Missing Update