Product
loginizer
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-10097
CVE-2023-2296
CVE-2022-45079
CVE-2022-45084
CVE-2020-27615
CVE-2018-11366
CVE-2017-12651
CVE-2017-12650
< 1.9.3
The Loginizer Security and Loginizer plugins for WordPress are vulnerable to authentication bypass in all versions up to, and incl
< 1.7.9
The Loginizer WordPress plugin before 1.7.9 does not escape a parameter before outputting it back in the page, leading to a Reflec
< 1.7.6
Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Loginizer plugin <= 1.7.5 versions.
< 1.7.6
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Softaculous Loginizer plugin <= 1.7.5 versions.
< 1.6.4
The Loginizer plugin before 1.6.4 for WordPress allows SQL injection (with resultant XSS), related to loginizer_login_failed and l
all versions
init.php in the Loginizer plugin 1.3.8 through 1.3.9 for WordPress has Unauthenticated Stored Cross-Site Scripting (XSS) because l
<= 1.3.5
Cross Site Request Forgery (CSRF) exists in the Blacklist and Whitelist IP Wizard in init.php in the Loginizer plugin before 1.3.6
<= 1.3.5
SQL Injection exists in the Loginizer plugin before 1.3.6 for WordPress via the X-Forwarded-For HTTP header.