Vulnerabilities > Loginizer > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-30 | CVE-2023-2296 | Unspecified vulnerability in Loginizer The Loginizer WordPress plugin before 1.7.9 does not escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin | 6.1 |
| 2023-04-24 | CVE-2022-45084 | Cross-site Scripting vulnerability in Loginizer Unauth. | 6.1 |
| 2018-05-22 | CVE-2018-11366 | Cross-site Scripting vulnerability in Loginizer 1.3.8/1.3.9 init.php in the Loginizer plugin 1.3.8 through 1.3.9 for WordPress has Unauthenticated Stored Cross-Site Scripting (XSS) because logging is mishandled. | 6.1 |