WP-Safety

All in One Login Styler Security & Risk Analysis

wordpress.org/plugins/all-in-one-login-styler

Easily customize the WordPress login page with your own logo, background image, and custom colors — no coding required.

40 active installs v1.0.1 PHP 7.4+ WP 6.0+ Updated Jan 28, 2026
admin-brandingcustomization-login-pageloginlogin-page-stylerwhite-label
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is All in One Login Styler Safe to Use in 2026?

Generally Safe

Score 100/100

All in One Login Styler has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "all-in-one-login-styler" plugin v1.0.1 exhibits a generally positive security posture based on the provided static analysis. It has a small attack surface with all identified entry points (AJAX handlers) protected by nonces. The code follows good practices by utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output. The absence of dangerous functions, file operations, and external HTTP requests further strengthens its security. The plugin's history shows no recorded vulnerabilities, which is a strong indicator of responsible development and maintenance.

However, there are areas for improvement. Notably, there are no explicit capability checks implemented on the AJAX handlers. While nonce checks are present, relying solely on them without capability checks can leave the plugin vulnerable if an attacker can bypass the nonce verification or if the actions performed by the AJAX handler are sensitive and require specific user roles to execute. The lack of recorded vulnerabilities, while positive, could also mean the plugin hasn't been extensively tested or targeted. A robust security approach would incorporate both nonce and capability checks for all sensitive AJAX actions.

Key Concerns

  • AJAX handlers lack capability checks
Vulnerabilities
None known

All in One Login Styler Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

All in One Login Styler Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
29 escaped
Nonce Checks
3
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

94% escaped31 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
aiols_handle_image_upload (admin\class-image-upload.php:30)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

All in One Login Styler Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_aiols_remove_logoincludes\functions.php:18
authwp_ajax_aiols_remove_bg_imgincludes\functions.php:58
WordPress Hooks 6
actionadmin_menuadmin\class-admin-settings.php:23
actionadmin_initadmin\class-admin-settings.php:24
actionadmin_initadmin\class-image-upload.php:20
actionlogin_enqueue_scriptsadmin\class-login-customizer.php:30
actionadmin_enqueue_scriptsincludes\class-enqueue.php:23
actionadmin_enqueue_scriptsincludes\class-enqueue.php:26
Maintenance & Trust

All in One Login Styler Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 28, 2026
PHP min version7.4
Downloads462

Community Trust

Rating100/100
Number of ratings1
Active installs40
Alternatives

All in One Login Styler Alternatives

Custom Login Page Customizer

Custom Login Page Customizer

colorlib-login-customizer

A
100

Customize your WordPress login page with live preview. Change logo, background, colors, and form styling without coding.

50K No CVEs
AGCA – Custom Dashboard & Login Page

AGCA – Custom Dashboard & Login Page

ag-custom-admin

A
97

CHANGE: admin menu, login page, admin bar, dashboard widgets, custom colors, custom CSS & JS, logo & images

20K 5 CVEs
Branda – White Label & Branding, Free Login Page Customizer

Branda – White Label & Branding, Free Login Page Customizer

branda-white-labeling

A
89

White label & rebrand your login page & WordPress dashboard. Customize system emails & get everything to rebrand WordPress with Branda.

20K 7 CVEs
White Label – WordPress Custom Admin, Custom Login Page, and Custom Dashboard

White Label – WordPress Custom Admin, Custom Login Page, and Custom Dashboard

white-label

A
100

Our White Label WordPress plugin lets you make a custom admin experience. Create a custom login page, a custom dashboard, and much more.

10K 1 CVE
WP Adminify – White Label WordPress, Admin Menu Editor, Login Customizer

WP Adminify – White Label WordPress, Admin Menu Editor, Login Customizer

adminify

A
95

Transform your WordPress admin into a fully white-labeled, organized client dashboard. Customize, Dark mode, Secure, Boost productivity, and more.

7K 7 CVEs
Developer Profile

All in One Login Styler Developer Profile

Shahid Ifraheem

1 plugin · 40 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect All in One Login Styler

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/all-in-one-login-styler/admin/css/login-style.css/wp-content/plugins/all-in-one-login-styler/js/customizer.js
Script Paths
/wp-content/plugins/all-in-one-login-styler/js/customizer.js

HTML / DOM Fingerprints

CSS Classes
aiols-login-form-widthaiols-background-coloraiols-button-coloraiols-form-coloraiols-fields-border-coloraiols-form-radiusaiols-links-color
HTML Comments
<!-- AIOLS - Login Customizer -->
Data Attributes
data-aiols-form-widthdata-aiols-background-colordata-aiols-button-colordata-aiols-form-colordata-aiols-fields-border-colordata-aiols-form-radius+1 more
JS Globals
AIOLS_CUSTOMIZER_SETTINGS
FAQ

Frequently Asked Questions about All in One Login Styler