cleantalk
Vulnerabilities and Security Researches

Custom Login Page Customizer, 0a1a4f6ae62d8f362f6160e687ffc674dc5362bb

CVE, Research URL

0a1a4f6ae62d8f362f6160e687ffc674dc5362bb

Home page URL

Security reports for Custom Login Page Customizer

Application

Custom Login Page Customizer

Published on
Feb 28, 2022
Research Description
Custom Login Page Customizer [login-customizer] < 2.1.8 WordPress Custom Login Page Customizer plugin <= 2.1.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Custom Login Page Customizer plugin (versions <= 2.1.7).
Affected versions
max 2.1.8.
Status
vulnerable
Previous vulnerability researches
wp-login customizer (CVE-2024-52424) , Nov 17, 2024
Custom Login Page Customizer (CVE-2025-14975) , Feb 27, 2026
Custom Login Page Customizer (CVE-2022-4974) , Nov 15, 2024
Custom Login Page Customizer (0a1a4f6ae62d8f362f6160e687ffc674dc5362bb) , Jun 07, 2024
New vulnerability
Serious Slider (CVE-2026-25399) , Feb 28, 2026
Omnipress (CVE-2026-25432) , Feb 28, 2026
MDirector Newsletter (CVE-2025-14852) , Feb 28, 2026
Alma &#8211; Pay in installments or later for WooCommerce (CVE-2026-24999) , Feb 28, 2026
Visual Website Collaboration, Feedback &amp; Project Management &#8211; Atarim (CVE-2026-25019) , Feb 27, 2026