| CVE-2025-68974 | WordPress WordPress Social Login and Register plugin <= 7.7.0 - Local File Inclusion vulnerability | miniOrange | WordPress Social Login and Register | Medium | 6.6 | 2025-12-30 10:47:48 | Deep Dive |
| CVE-2025-47670 | WordPress Social Login and Register plugin <= 7.6.10 - Local File Inclusion Vulnerability | miniOrange | WordPress Social Login and Register | High | 8.1 | 2025-05-23 12:43:22 | Deep Dive |
| CVE-2023-24375 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 - Broken Access Control vulnerability | miniOrange | WordPress Social Login and Register | Low | 3.5 | 2024-12-09 11:31:41 | Deep Dive |
| CVE-2023-25455 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.6.0 - Arbitrary Content Deletion vulnerability | miniOrange | WordPress Social Login and Register | Medium | 5.3 | 2024-12-09 11:31:33 | Deep Dive |
| CVE-2024-10020 | Heateor Social Login WordPress <= 1.1.35 - Authentication Bypass via Disqus OAuth provider | heateor | Heateor Social Login WordPress | High | 8.1 | 2024-11-06 06:43:31 | Deep Dive |
| CVE-2023-47683 | WordPress Social Login, Social Sharing by miniOrange plugin <= 7.6.6 - Authenticated Privilege Escalation vulnerability | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | High | 8.0 | 2024-05-17 08:36:38 | Deep Dive |
| CVE-2024-32674 | WordPress Plugin Heator Social Login 跨站脚本漏洞 | Heateor | Heateor Social Login WordPress | - | - | 2024-05-08 03:37:49 | Deep Dive |
| CVE-2024-24712 | WordPress Heateor Social Login Plugin <= 1.1.30 is vulnerable to Cross Site Scripting (XSS) | Team Heateor | Heateor Social Login WordPress | Medium | 6.5 | 2024-02-10 08:05:30 | Deep Dive |
| CVE-2023-4773 | WordPress Social Login <= 3.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | miled | WordPress Social Login | Medium | 6.4 | 2023-09-06 03:28:20 | Deep Dive |
| CVE-2023-34023 | WordPress WordPress Social Login Plugin <= 3.0.4 is vulnerable to Cross Site Scripting (XSS) | Miled | WordPress Social Login | High | 7.1 | 2023-08-30 14:25:03 | Deep Dive |
| CVE-2023-34172 | WordPress WordPress Social Login Plugin <= 3.0.4 is vulnerable to Cross Site Scripting (XSS) | Miled | WordPress Social Login | Medium | 5.9 | 2023-08-30 14:12:47 | Deep Dive |
| CVE-2023-2982 | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.6.4 - Authentication Bypass | cyberlord92 | miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) | Critical | 9.8 | 2023-06-29 01:56:56 | Deep Dive |
| CVE-2023-23706 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Plugin <= 7.5.14 is vulnerable to Cross Site Request Forgery (CSRF) | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | Medium | 4.3 | 2023-05-23 12:41:38 | Deep Dive |
| CVE-2023-23710 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 is vulnerable to Cross Site Scripting (XSS) | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | Medium | 5.9 | 2023-04-25 19:41:40 | Deep Dive |
| CVE-2021-24867 | Backdoored Plugins & Themes from AccessPress Themes | AccessPress Themes | Frontend Post WordPress Plugin – AccessPress Anonymous Post | 超危 | - | 2022-02-21 10:45:39 | Deep Dive |