WP Clinic
Log in Sign up

PLUGIN SECURITY

Is Change Wp Admin Login safe?

Known vulnerabilities, PHP compatibility and safer alternatives for the Change Wp Admin Login WordPress plugin — checked against WP Clinic's local security database.

Plugin details

  • Slug: change-wp-admin-login
  • Requires PHP: 7.4+
  • Max supported PHP (analyzed): 8.4

Known vulnerabilities

  • All In One Login — Login Page Security and Customization for WordPress with Google reCAPTCHA, Social Login, Temporary Login, 2FA, and more. [change-wp-admin-login] < 1.1.0 [CVE-2022-1589, WordPress Change wp-admin login plugin <= 1.0.9 - Unauthenticated Arbitrary Settings Update vulnerability, Change wp-admin Login &lt; 1.1.0 - Unauthenticated Arbitrary Settings Update, Change WP Admin Login <= 1.0.9 - Missing Authorization Checks]
  • All In One Login — Login Page Security and Customization for WordPress with Google reCAPTCHA, Social Login, Temporary Login, 2FA, and more. [change-wp-admin-login] < 1.1.4 [CVE-2023-3604, Change WP Admin Login <= 1.1.3 - Protection Mechanism Failure to Login Page Disclosure, WordPress Change wp-admin login Plugin < 1.1.4 is vulnerable to Bypass Vulnerability, Change WP Admin &lt; 1.1.4 - Secret Login Page Disclosure]
  • All In One Login — Login Page Security and Customization for WordPress with Google reCAPTCHA, Social Login, Temporary Login, 2FA, and more. [change-wp-admin-login] < 2.0.9 [CVE-2025-58595, WordPress All In One Login Plugin <= 2.0.8 is vulnerable to Bypass Vulnerability, WordPress All In One Login Plugin <= 2.0.8 - IP Sooofing to Protection Mechanism Bypass]

Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.

Safer / more established alternatives

Check your own WordPress site

Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.