EPSS
Percentile
45.4%
The plugin does not correctly implement capability checks on the do_field_reorder function, allowing authenticated users with only subscriber-level access to reorder form elements on login forms.
www.wordfence.com/threat-intel/vulnerabilities/id/bf05a79a-0375-4c9d-bbf0-a87484327b87