| CVE-2025-14975 | Custom Login Page Customizer < 2.5.4 - Unauthenticated Arbitrary Password Reset | Unknown | Custom Login Page Customizer | - | - | 2026-01-29 06:00:02 | Deep Dive |
| CVE-2025-49902 | WordPress Login Page Customizer – Customizer Login Page, Admin Page, Custom Design plugin <= 2.1.1 - Broken Access Control vulnerability | A WP Life | Login Page Customizer – Customizer Login Page, Admin Page, Custom Design | Medium | 6.5 | 2025-12-18 07:21:44 | Deep Dive |
| CVE-2025-12132 | WP Custom Admin Login Page Logo <= 1.4.8.4 - Cross-Site Request Forgery to Settings Update | larsactionhero | WP Custom Admin Login Page Logo | Medium | 4.3 | 2025-11-11 03:30:41 | Deep Dive |
| CVE-2025-31769 | WordPress CLP – Custom Login Page by NiteoThemes plugin <= 1.5.5 - Cross Site Request Forgery (CSRF) vulnerability | NiteoThemes | CLP – Custom Login Page by NiteoThemes | Medium | 4.3 | 2025-04-01 14:51:19 | Deep Dive |
| CVE-2025-1764 | LoginPress <= 3.3.1 - Cross-Site Request Forgery to Arbitrary Options Update | hiddenpearls | LoginPress | wp-login Custom Login Page Customizer | High | 7.5 | 2025-03-14 05:24:02 | Deep Dive |
| CVE-2024-13530 | Custom Login Page Styler <= 7.1.1 - Missing Authorization to Authenticated (Subsciber+) Log Deletion and Session Termination | zia-imtiaz | Login Page Styler – Custom WordPress Login Page Customizer & Security | Medium | 4.3 | 2025-01-31 07:23:40 | Deep Dive |
| CVE-2024-13226 | A5 Custom Login Page <= 2.8.1 - Reflected XSS | Unknown | A5 Custom Login Page | 中危 | - | 2025-01-31 06:00:17 | Deep Dive |
| CVE-2024-12594 | ALL In One Custom Login Page <= 7.1.1 - Missing Authorization to Authenticated (Subscriber+)Privilege Escalation | zia-imtiaz | Login Page Styler – Custom WordPress Login Page Customizer & Security | High | 8.8 | 2024-12-24 05:23:44 | Deep Dive |
| CVE-2024-9371 | Branda – White Label & Branding, Custom Login Page Customizer <= 3.4.19 - Reflected Cross-Site Scripting | wpmudev | Branda – White Label & Branding, Free Login Page Customizer | Medium | 6.1 | 2024-11-21 04:24:27 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-6554 | Branda – White Label WordPress, Custom Login Page Customizer <= 3.4.18 - Unauthenticated Full Path Disclosure | wpmudev | Branda – White Label & Branding, Free Login Page Customizer | Medium | 5.3 | 2024-07-11 03:33:19 | Deep Dive |
| CVE-2024-5191 | Branda – White Label WordPress, Custom Login Page Customizer <= 3.4.17 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload | wpmudev | Branda – White Label & Branding, Free Login Page Customizer | Medium | 6.4 | 2024-06-21 06:58:19 | Deep Dive |
| CVE-2023-52128 | WordPress White Label Plugin <= 2.9.0 is vulnerable to Cross Site Request Forgery (CSRF) | WhiteWP | White Label – WordPress Custom Admin, Custom Login Page, and Custom Dashboard | Medium | 4.3 | 2024-01-05 08:49:17 | Deep Dive |
| CVE-2023-46777 | WordPress Feather Login Page Plugin <= 1.1.3 is vulnerable to Cross Site Request Forgery (CSRF) | - | Custom Login Page | Temporary Users | Rebrand Login | Login Captcha | 中危 | - | 2023-11-06 11:06:58 | Deep Dive |
| CVE-2023-40329 | WordPress Custom Admin Login Page | WPZest Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS) | WPZest | Custom Admin Login Page | WPZest | Medium | 5.9 | 2023-09-06 08:24:14 | Deep Dive |
| CVE-2023-2545 | WordPress Plugin Feather Login Page 安全漏洞 | featherplugins | Custom Login Page | Temporary Users | Rebrand Login | Login Captcha | High | 8.1 | 2023-05-31 02:40:21 | Deep Dive |
| CVE-2023-2549 | WordPress Plugin Feather Login Page Feather Login Page 跨站请求伪造漏洞 | featherplugins | Custom Login Page | Temporary Users | Rebrand Login | Login Captcha | High | 8.8 | 2023-05-31 02:40:20 | Deep Dive |
| CVE-2023-2547 | WordPress Plugin Feather Login Page 安全漏洞 | featherplugins | Custom Login Page | Temporary Users | Rebrand Login | Login Captcha | Medium | 5.4 | 2023-05-31 02:40:20 | Deep Dive |
| CVE-2022-46861 | WordPress Login Page Styler Plugin <= 6.2 is vulnerable to Cross Site Scripting (XSS) | Zia Imtiaz | Custom Login Page Styler for WordPress | Medium | 5.9 | 2023-05-10 09:30:24 | Deep Dive |
| CVE-2023-26012 | WordPress Custom Login Page Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS) | Denzel Chia | Phire Design | Custom Login Page | Medium | 5.9 | 2023-05-04 13:14:07 | Deep Dive |