Approved changes feed: RSS · Atom

cpe:2.3:a:12net:login_rebuilder:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

Vendor12Net (0c0994a5-2b30-59cb-bdab-3d10bd3af850)
ProductLogin Rebuilder (48f3e26f-a210-5173-9cf7-2ed5b3c6cb89)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-2223 vulnerable 2026-06-08 06:02:41.642532 Login Rebuilder < 2.8.1 - Admin+ Stored XSS
The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
Published: 2023-05-30T07:49:20.226Z
Updated: 2025-02-13T16:43:48.795Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-3882 vulnerable 2026-06-08 05:05:43.094896 Details available
Cross-site request forgery (CSRF) vulnerability in the Login rebuilder plugin before 1.2.0 for WordPress allows remote attackers to hijack the authentication of arbitrary users.
Published: 2014-06-25T10:00:00.000Z
Updated: 2024-08-06T10:57:17.857Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.