VYPR

Loginwp Pro

by WordPress

CVEs (3)

  • CVE-2025-46255HigJan 5, 2026
    risk 0.49cvss 7.5epss 0.00

    Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

  • CVE-2025-39561MedJan 5, 2026
    risk 0.42cvss 6.5epss 0.00

    Missing Authorization vulnerability in Marketing Fire, LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

  • CVE-2021-24939Dec 6, 2021
    risk 0.00cvss epss 0.01

    The LoginWP (Formerly Peter's Login Redirect) WordPress plugin before 3.0.0.5 does not sanitise and escape the rul_login_url and rul_logout_url parameter before outputting them back in attributes in an admin page, leading to a Reflected Cross-Site Scripting issue