3 matches found
CVE-2025-58969
Missing Authorization vulnerability in Greg Winiarski Custom Login URL custom-login-url allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Custom Login URL: from n/a through = 1.0.2...
CVE-2025-58969
CVE-2025-58969 affects the Custom Login URL WordPress plugin. The connected document confirms a Missing Authorization issue in Custom Login URL, enabling Unauthorized updates to plugin options via wcmlim_settings_ajax_handler, with affected versions up to and including 1.0.2. The patch for this v...
PT-2025-39029
Name of the Vulnerable Software and Affected Versions WordPress Custom Login URL versions through 1.0.2 Description A missing authorization issue exists in Greg Winiarski Custom Login URL, allowing exploitation of incorrectly configured access control security levels. Recommendations Update to a...