cleantalk
Vulnerabilities and Security Researches

Clean Login, CVE-2026-54184

CVE, Research URL

CVE-2026-54184

Home page URL

Security reports for Clean Login

Application

Clean Login

Published on
Jun 17, 2026
Research Description
Unauthenticated Insecure Direct Object References (IDOR) in Clean Login <= 1.15 versions.
Affected versions
max 1.16.
Status
vulnerable
Previous vulnerability researches
Advanced ads Management by Inazo (43d0bf85cc455322a9cd5d5c7579ff8d24af3c54) , Jun 07, 2024
Advanced ads Management by Inazo (83748619e34aa47e21c32a4e080e7829c69fcbb0) , Jun 16, 2026
Advanced ads Management by Inazo (63dad79a-aa7a-4607-afe4-e1c218b31da6) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (e83c33af3964f299b7ca2b4f32c9ddbf9551b285) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2025-10487) , Nov 11, 2025
New vulnerability
Advanced Import : One Click Import for WordPress or Theme Demo Data (CVE-2026-4328) , Jun 19, 2026
Falang multilanguage for WordPress (CVE-2026-54805) , Jun 19, 2026
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2026-54803) , Jun 19, 2026
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2026-54802) , Jun 19, 2026
Webhook Automator &amp; Form Integration to Automate 200+ Platforms – Bit Integrations (CVE-2026-11989) , Jun 19, 2026