Medium 5.9
2025-06-20< 2.9.5
CVE-2025-50027
Login & Register Customizer – Popup | Slider | Inline | WooCommerce
Minimum safe version
2.9.5
Update to 2.9.5 or later to address 14 fixable vulnerabilities
Latest available3.1.2 ✓Affected up to2.7.2 ⚠
Medium 6.4
2025-02-20< 2.8.6
WordPress Login/Signup Popup Plugin <= 2.8.5 is vulnerable to Cross Site Scripting (XSS)
Medium 4.3
2024-06-06≥ 2.7.1 and ≤ 2.7.2
CVE-2024-5665
High 8.8
2024-06-06< 2.7.3
CVE-2024-5324
N/A
< 2.4
Login/Signup Popup < 2.4 - Settings Reset via CSRF
N/A
2023-06-26< 2.4
WordPress Login/Signup Popup Plugin <= 2.3 is vulnerable to Cross Site Request Forgery (CSRF)
N/A
2023-06-26< 2.4
Login/Signup Popup <= 2.3 - Cross-Site Request Forgery to Settings Reset
High 7.4
2023-06-07< 1.5
CVE-2020-36715
N/A
< 1.5
Login/Signup Popup < 1.5 - Authenticated Stored Cross-Site Scripting (XSS)
N/A
< 2.2
Login/Signup Popup < 2.2 - Reflected Cross-Site Scripting
N/A
2020-05-14< 1.5
Login/Signup Popup < 1.5 - Missing Authorization
N/A
2021-11-17< 2.2
Login/Signup Popup ( Inline Form + Woocommerce ) <= 2.1 - Reflected Cross-Site Scripting
N/A
2020-05-14< 1.5
WordPress Login/Signup Popup plugin <= 1.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
N/A
2021-11-17< 2.2
WordPress Login/Signup Popup plugin <= 2.1 - Reflected Cross-Site Scripting (XSS) vulnerability
High 8.8
2022-01-18< 2.3
CVE-2022-0215