WordPress%20Social%20Login%20and%20Register

WordPress Social Login and Register

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-68974

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9.8||CRITICAL

EPSS-0.17% / 37.52%

7 Day CHG~0.00%

Published-30 Dec, 2025 | 10:47

Updated-20 Jan, 2026 | 15:19

WordPress WordPress Social Login and Register plugin <= 7.7.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in miniOrange WordPress Social Login and Register miniorange-login-openid allows PHP Local File Inclusion.This issue affects WordPress Social Login and Register: from n/a through <= 7.7.0.

Vendor-miniOrange

Product-WordPress Social Login and Register

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CVE-2025-47670

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-8.1||HIGH

EPSS-0.16% / 36.68%

7 Day CHG~0.00%

Published-23 May, 2025 | 12:43

Updated-27 May, 2025 | 14:22

WordPress WordPress Social Login and Register <= 7.6.10 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in miniOrange WordPress Social Login and Register allows PHP Local File Inclusion. This issue affects WordPress Social Login and Register: from n/a through 7.6.10.

Vendor-miniOrange

Product-WordPress Social Login and Register

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')