Wordpress Social Login Vulnerabilities

Cross-Site Request Forgery Vulnerability in Heateor Social Login by Heateor

CVE-2025-68998

WordPressHeateor Social Login5.4MEDIUM

Local File Inclusion Vulnerability in miniOrange WordPress Social Login

CVE-2025-68974

WordPressWordPress Social Login...9.8CRITICAL

Unauthorized Access in Wp Social Login and Register Social Counter Plugin by WordPress

CVE-2025-13620

WordPressWP Social Login And Re...5.3MEDIUM

Cross-Site Request Forgery in Nextend Social Login and Register for WordPress

CVE-2025-13737

WordPressNextend Social Login A...4.3MEDIUM

Stored Cross-Site Scripting Vulnerability in Quick Social Login Plugin for WordPress

CVE-2025-10140

WordPressQuick Social Login6.4MEDIUM

Stored Cross-Site Scripting Vulnerability in Heateor Login Plugin for WordPress

CVE-2025-9857

WordPressHeateor Login – Social...6.4MEDIUM

PHP Remote File Inclusion in miniOrange WordPress Social Login and Register

CVE-2025-47670

WordPressWordPress Social Login...8.1HIGH

Authentication Bypass in miniOrange Social Login Pro Addon for WordPress

CVE-2024-11087

WordPressMiniorange Social Logi...8.1HIGH

Cross-Site Request Forgery Vulnerability in Wp Social Login and Register Social Counter Plugin by WordPress

CVE-2025-1506

WordPressWP Social Login And Re...4.3MEDIUM

Authentication Bypass Vulnerability in Login Me Now Plugin for WordPress

CVE-2025-1717

WordPress1 Click Passwordless L...8.1HIGH

Authentication Bypass Vulnerability in Nextend Social Login Pro by Nextend Web

CVE-2025-1061

WordPressNextend Social Login Pro9.8CRITICAL

SQL Injection Vulnerability in Super Socializer Plugin for WordPress

CVE-2024-13230

WordPressSocial Share, Social L...5.3MEDIUM

Missing Authorization Vulnerability in miniOrange WordPress Social Login and Register Allows Exploiting Incorrectly Configured Access Control Security Levels

CVE-2023-24375

WordpressWordPress Social Login...3.5LOW

Authorization Vulnerability Affects WordPress Social Login and Register

CVE-2023-25455

WordpressWordPress Social Login...5.3MEDIUM

Authentication Bypass Vulnerability Affects User Registration Forms

CVE-2024-11293

WordPressPie Register - Social ...8.1HIGH

Social Login <= 5.9.0 - Authentication Bypass

CVE-2024-10961

WordPressSocial Login9.8CRITICAL

Unauthenticated Attackers Can Log in as Any Existing User on the Site

CVE-2024-9946

WordPressSocial Share, Social L...8.1HIGH

Authentications Bypass Vulnerability in Social Login WordPress Plugin

CVE-2024-10020

WordPressHeateor Social Login W...8.1HIGH

WooCommerce Social Login Vulnerable to Authentication Bypass

CVE-2024-10114

WordPressWooCommerce - Social L...8.1HIGH

Authentications Bypass Vulnerability Affects Wp Social Login and Register Social Counter Plugin

CVE-2024-9501

WordPressWP Social Login And Re...9.8CRITICAL

Authentication Bypass in Nextend Social Login Pro for WordPress

CVE-2024-9893

WordPressNextend Social Login Pro9.8CRITICAL

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

CVE-2022-4974

WordPressYasr – Yet Another Sta...6.3MEDIUM

Unauthenticated Access to Site Users Through Social Login Bypass

CVE-2024-9106

WordPressWechat Social Login 微信...👾🟡EPSS 41%9.8CRITICAL

Wechat Social Login Plugin Vulnerable to Arbitrary File Uploads

CVE-2024-9108

WordPressWechat Social Login 微信...9.8CRITICAL

WooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account Takeover

CVE-2024-7503

WordPressWooCommerce - Social L...9.8CRITICAL

Vulnerability Published:

Sort By:

30 December 2025

Cross-Site Request Forgery Vulnerability in Heateor Social Login by Heateor

Local File Inclusion Vulnerability in miniOrange WordPress Social Login

5 December 2025

Unauthorized Access in Wp Social Login and Register Social Counter Plugin by WordPress

28 November 2025

Cross-Site Request Forgery in Nextend Social Login and Register for WordPress

15 October 2025

Stored Cross-Site Scripting Vulnerability in Quick Social Login Plugin for WordPress

10 September 2025

Stored Cross-Site Scripting Vulnerability in Heateor Login Plugin for WordPress

23 May 2025

PHP Remote File Inclusion in miniOrange WordPress Social Login and Register

8 March 2025

Authentication Bypass in miniOrange Social Login Pro Addon for WordPress

28 February 2025

Cross-Site Request Forgery Vulnerability in Wp Social Login and Register Social Counter Plugin by WordPress

27 February 2025

Authentication Bypass Vulnerability in Login Me Now Plugin for WordPress

7 February 2025

Authentication Bypass Vulnerability in Nextend Social Login Pro by Nextend Web

21 January 2025

SQL Injection Vulnerability in Super Socializer Plugin for WordPress

9 December 2024

Missing Authorization Vulnerability in miniOrange WordPress Social Login and Register Allows Exploiting Incorrectly Configured Access Control Security Levels

Authorization Vulnerability Affects WordPress Social Login and Register

4 December 2024

Authentication Bypass Vulnerability Affects User Registration Forms

23 November 2024

Social Login <= 5.9.0 - Authentication Bypass

6 November 2024

Unauthenticated Attackers Can Log in as Any Existing User on the Site

Authentications Bypass Vulnerability in Social Login WordPress Plugin

5 November 2024

WooCommerce Social Login Vulnerable to Authentication Bypass

26 October 2024

Authentications Bypass Vulnerability Affects Wp Social Login and Register Social Counter Plugin

16 October 2024

Authentication Bypass in Nextend Social Login Pro for WordPress

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

1 October 2024

Unauthenticated Access to Site Users Through Social Login Bypass

Wechat Social Login Plugin Vulnerable to Arbitrary File Uploads

12 August 2024

WooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account Takeover