Login Configurator Project - Login Configurator CVE

Filtered by vendor Login Configurator Project Subscribe

Filtered by product Login Configurator

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-34369	1 Login Configurator Project	1 Login Configurator	2023-07-31	N/A	4.8 MEDIUM
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GrandSlambert Login Configurator plugin <= 2.1 versions.
CVE-2023-1893	1 Login Configurator Project	1 Login Configurator	2023-07-26	N/A	6.1 MEDIUM
The Login Configurator WordPress plugin through 2.1 does not properly escape a URL parameter before outputting it to the page, leading to a reflected cross-site scripting vulnerability targeting site administrators.

Vulnerabilities (CVE)