Warning: Unpatched Vulnerability | WordPress.org

Resolved Martin Sauter
(@martinsauter)

5 months, 1 week ago
This plugin has an unpatched vulnerability. It should be either fixed or removed from wordpress.org.

For details:
- https://www.cve.org/CVERecord?id=CVE-2025-49438
- https://patchstack.com/database/wordpress/plugin/simple-login-log/vulnerability/wordpress-simple-login-log-plugin-1-1-3-php-object-injection-vulnerability

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author Joris Le Blansch
(@apiosys)

1 month, 2 weeks ago

Dear Martin,

I have taken over the maintenance of this plugin since yesterday. The code has been completely refactored and the vulnerabilities have finally been addressed.

Please feel free to contribute to the plugin here: https://github.com/apio-sys/simple-login-log .

Kind regards,

Joris.

Thread Starter Martin Sauter
(@martinsauter)

1 month, 2 weeks ago

Hi Joris,

that’s good news! Thank you.

Kind regards,
Martin

Viewing 2 replies - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

3 replies
2 participants
Last reply from: Martin Sauter
Last activity: 1 month, 2 weeks ago
Status: resolved