Does Custom Login Screen have any unpatched vulnerabilities?

No. All known vulnerabilities in Custom Login Screen have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Custom Login Screen compatible with WordPress 6.1.10?

According to WordPress.org data, Custom Login Screen 1.0.2 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is Custom Login Screen updated?

Custom Login Screen was last updated on Feb 15, 2023. Frequent updates are generally a positive security signal.

What is Custom Login Screen's security score?

Custom Login Screen has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Custom Login Screen Security & Risk Analysis

wordpress.org/plugins/custom-login-screen

An unique and customizable WordPress login screen.

40 active installs v1.0.2 PHP + WP 4.0+ Updated Feb 15, 2023

admin-loginlogin-logologin-screenlogin-stylewp-login

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Custom Login Screen Safe to Use in 2026?

Generally Safe

Score 85/100

Custom Login Screen has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The 'custom-login-screen' plugin v1.0.2 exhibits a strong security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the code signals indicate good development practices, with no dangerous functions, all SQL queries using prepared statements, and a high percentage of properly escaped output. The presence of a nonce check, even with no capability checks, is also a positive indicator.

Taint analysis reveals no critical or high severity flows with unsanitized paths, reinforcing the impression of secure coding. The complete lack of known CVEs, both past and present, further strengthens this assessment. The plugin demonstrates a commitment to security by avoiding common pitfalls like direct SQL queries and unescaped output.

In conclusion, the 'custom-login-screen' plugin v1.0.2 appears to be a well-secured plugin. Its minimal attack surface, adherence to secure coding practices, and clean vulnerability history suggest a low risk to WordPress installations. The primary area for minor improvement would be the implementation of capability checks to further restrict access to its functionalities.

Key Concerns

Missing capability checks
70% output properly escaped (30% not)

Vulnerabilities

None known

Custom Login Screen Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Custom Login Screen Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

47 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

70% escaped67 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

save_options (custom-login-screen.php:105)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Custom Login Screen Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menucustom-login-screen.php:23

actionadmin_enqueue_scriptscustom-login-screen.php:24

actionadmin_action_custom-login-screencustom-login-screen.php:25

actionlogin_enqueue_scriptsincludes\apply-settings.php:5

Maintenance & Trust

Custom Login Screen Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedFeb 15, 2023

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings2

Active installs40

Alternatives

Custom Login Screen Alternatives

Secure Admin Login With Customize

secure-admin-login-with-customize

Secure admin login with customize allows you to customize your WordPress admin login page within WordPress customizer.

10 No CVEs

Rename wp-admin login

rename-wp-admin-login

100

Rename wp-admin login* is a plugin that allows us to rename wp-admin login URL to anything you want

7K No CVEs

WP Login and Logout Redirect

wp-login-and-logout-redirect

This plugin enable simple and easy way to redirect user to your chosen page URL after login or logout or both.

6K 1 CVE

Custom Login Logo – Easily Add a Logo to Your WordPress Login Page

custom-login-logo

100

Easily add a custom logo to your WordPress login page using the built-in media uploader.

2K No CVEs

Simple Custom Login

simple-custom-login

Quickly apply some fun or custom branding to your login screen

200 No CVEs

Developer Profile

Custom Login Screen Developer Profile

Haris

4 plugins · 130 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Custom Login Screen

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/custom-login-screen/assets/style-admin.css/wp-content/plugins/custom-login-screen/assets/style-login.css

HTML / DOM Fingerprints

CSS Classes

login-screen-wraplogin-form-wraplogin-title-wraplogin-message-wrap

Data Attributes

data-login-titledata-login-title-mobiledata-login-logodata-login-message

JS Globals

CLSHRS_FormLibraryHRS_FileUploader

FAQ