Does Login Logout Menu & Redirect have any unpatched vulnerabilities?

No. All known vulnerabilities in Login Logout Menu & Redirect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Login Logout Menu & Redirect compatible with WordPress 6.9.4?

According to WordPress.org data, Login Logout Menu & Redirect 3.9.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Login Logout Menu & Redirect compatible with PHP 7.4+?

Login Logout Menu & Redirect requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Login Logout Menu & Redirect updated?

Login Logout Menu & Redirect was last updated on Mar 15, 2026. Frequent updates are generally a positive security signal.

What is Login Logout Menu & Redirect's security score?

Login Logout Menu & Redirect has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Login Logout Menu & Redirect Security & Risk Analysis

wordpress.org/plugins/lmscrafter-user-menu-redirects

Dynamic login menus, 7-level smart redirect engine, role-based menu visibility, and login analytics. All in one plugin.

0 active installs v3.9.0 PHP 7.4+ WP 5.8+ Updated Mar 15, 2026

loginlogin-menulogin-redirectlogout-redirectredirect

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Login Logout Menu & Redirect Safe to Use in 2026?

Generally Safe

Score 100/100

Login Logout Menu & Redirect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 19d ago

Risk Assessment

The "lmscrafter-user-menu-redirects" v3.9.0 plugin exhibits a generally good security posture, with a strong emphasis on secure coding practices. The static analysis reveals excellent output escaping (99%) and a high percentage of SQL queries utilizing prepared statements (87%). The absence of dangerous functions, file operations, and critical or high-severity taint flows further bolster its security. Furthermore, the plugin has no recorded vulnerabilities, indicating a history of stable and secure development. However, a significant concern arises from the large attack surface exposed by AJAX handlers. Out of 13 AJAX handlers, all 13 lack authentication checks, presenting a considerable risk. This means any unauthenticated user can potentially trigger these handlers, leading to unintended consequences or information disclosure if these handlers perform sensitive actions. While capability checks are present for all entry points, the lack of authentication on AJAX handlers is a critical oversight that needs immediate attention. The presence of nonces on most AJAX actions (14 nonces for 13 handlers, suggesting one handler might have multiple nonces or one handler lacks one) is a positive sign for those that do have them, but it doesn't mitigate the fundamental issue of missing authentication.

Key Concerns

Unprotected AJAX handlers

Vulnerabilities

None known

Login Logout Menu & Redirect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Login Logout Menu & Redirect Code Analysis

Dangerous Functions

Raw SQL Queries

13 prepared

Unescaped Output

452 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

87% prepared15 total queries

Output Escaping

99% escaped455 total outputs

Data Flows

All sanitized

Data Flow Analysis

6 flows

ajax_subscribe_email (admin\class-lmsc-rsum-admin.php:446)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

13 unprotected

Login Logout Menu & Redirect Attack Surface

Entry Points18

Unprotected13

AJAX Handlers 13

authwp_ajax_lmsc_rsum_dismiss_noticeincludes\class-lmsc-rsum-core.php:161

authwp_ajax_lmsc_rsum_dismiss_reviewincludes\class-lmsc-rsum-core.php:162

authwp_ajax_lmsc_rsum_subscribe_emailincludes\class-lmsc-rsum-core.php:163

authwp_ajax_lmsc_rsum_save_settingsincludes\class-lmsc-rsum-core.php:164

authwp_ajax_lmsc_rsum_import_settingsincludes\class-lmsc-rsum-core.php:165

authwp_ajax_lmsc_rsum_reset_settingsincludes\class-lmsc-rsum-core.php:166

authwp_ajax_lmsc_rsum_search_usersincludes\class-lmsc-rsum-core.php:169

authwp_ajax_lmsc_rsum_search_productsincludes\class-lmsc-rsum-core.php:170

authwp_ajax_lmsc_rsum_search_coursesincludes\class-lmsc-rsum-core.php:171

authwp_ajax_lmsc_rsum_test_redirectincludes\class-lmsc-rsum-core.php:172

authwp_ajax_lmsc_rsum_load_analyticsincludes\class-lmsc-rsum-core.php:187

authwp_ajax_lmsc_rsum_clear_analyticsincludes\class-lmsc-rsum-core.php:190

authwp_ajax_lmsc_rsum_dismiss_diagnostics_noticelmscrafter-user-menu-redirects.php:215

Shortcodes 5

[lmsc_rsum_login] includes\class-lmsc-rsum-core.php:221

[lmsc_rsum_logout] includes\class-lmsc-rsum-core.php:222

[lmsc_rsum_login_logout] includes\class-lmsc-rsum-core.php:223

[lmsc_rsum_register] includes\class-lmsc-rsum-core.php:224

[lmsc_rsum_profile] includes\class-lmsc-rsum-core.php:225

WordPress Hooks 37

actionplugins_loadedincludes\class-lmsc-rsum-core.php:127

actionadmin_menuincludes\class-lmsc-rsum-core.php:142

actionadmin_initincludes\class-lmsc-rsum-core.php:143

actionadmin_enqueue_scriptsincludes\class-lmsc-rsum-core.php:146

actionadmin_enqueue_scriptsincludes\class-lmsc-rsum-core.php:147

filterplugin_action_linksincludes\class-lmsc-rsum-core.php:150

actionadmin_noticesincludes\class-lmsc-rsum-core.php:154

actionadmin_noticesincludes\class-lmsc-rsum-core.php:158

actionadmin_head-nav-menus.phpincludes\class-lmsc-rsum-core.php:175

actionadmin_initincludes\class-lmsc-rsum-core.php:178

actionwp_loginincludes\class-lmsc-rsum-core.php:183

actionwp_dashboard_setupincludes\class-lmsc-rsum-core.php:184

actionwp_enqueue_scriptsincludes\class-lmsc-rsum-core.php:204

actiontemplate_redirectincludes\class-lmsc-rsum-core.php:207

actioninitincludes\class-lmsc-rsum-core.php:210

filterwp_setup_nav_menu_itemincludes\class-lmsc-rsum-core.php:213

filterwp_nav_menu_objectsincludes\class-lmsc-rsum-core.php:214

filterwalker_nav_menu_start_elincludes\class-lmsc-rsum-core.php:217

filterwalker_nav_menu_start_elincludes\class-lmsc-rsum-core.php:218

filterregistration_redirectincludes\class-lmsc-rsum-core.php:228

filterlogin_redirectincludes\class-lmsc-rsum-core.php:231

filterlogout_redirectincludes\class-lmsc-rsum-core.php:234

filterwoocommerce_login_redirectincludes\class-lmsc-rsum-core.php:238

filtermepr_process_login_redirect_urlincludes\class-lmsc-rsum-core.php:242

actionwp_nav_menu_item_custom_fieldsincludes\class-lmsc-rsum-menu-visibility.php:32

actionwp_update_nav_menu_itemincludes\class-lmsc-rsum-menu-visibility.php:35

filterwp_nav_menu_objectsincludes\class-lmsc-rsum-menu-visibility.php:38

actionadmin_head-nav-menus.phpincludes\class-lmsc-rsum-menu-visibility.php:41

actionadmin_noticeslmscrafter-user-menu-redirects.php:137

actionadmin_initlmscrafter-user-menu-redirects.php:138

actionadmin_noticeslmscrafter-user-menu-redirects.php:144

actionadmin_initlmscrafter-user-menu-redirects.php:145

actionplugins_loadedlmscrafter-user-menu-redirects.php:186

actionplugins_loadedlmscrafter-user-menu-redirects.php:189

actionadmin_noticeslmscrafter-user-menu-redirects.php:199

actionsend_headerspublic\class-lmsc-rsum-public.php:61

filtershow_admin_barpublic\class-lmsc-rsum-public.php:132

Maintenance & Trust

Login Logout Menu & Redirect Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 15, 2026

PHP min version7.4

Downloads325

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Login Logout Menu & Redirect Alternatives

LoginWP (Formerly Peter's Login Redirect)

peters-login-redirect

Redirect users to different locations after they log in, log out and register based on different conditions.

90K 3 CVEs

WP Login and Logout Redirect

wp-login-and-logout-redirect

This plugin enable simple and easy way to redirect user to your chosen page URL after login or logout or both.

6K 1 CVE

Sky Login Redirect

sky-login-redirect

100

Control where users land after login/logout. Redirect by role, user, or previous page. Includes a powerful login customizer and WooCommerce support.

2K No CVEs

PowerUp – Admin Tools (Login/Logout Redirects, Scripts & Comments Control)

powerup

100

Simplify site management with Login/Logout Redirect, Hide Admin Bar, Disable Comments, Header Footer Scripts and Remove Footer Credit.

200 No CVEs

WC Quick Customer Redirects

wc-quick-customer-redirects

100

This plugin lets you set custom page redirects for customers after registration, login, logout actions.

30 No CVEs

Developer Profile

Login Logout Menu & Redirect Developer Profile

Mubashir Taqi

2 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Login Logout Menu & Redirect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/lmscrafter-user-menu-redirects/assets/css/admin.css/wp-content/plugins/lmscrafter-user-menu-redirects/assets/css/public.css/wp-content/plugins/lmscrafter-user-menu-redirects/assets/js/admin.js

Script Paths

/wp-content/plugins/lmscrafter-user-menu-redirects/assets/js/admin.js

Version Parameters

lmscrafter-user-menu-redirects/assets/css/admin.css?ver=lmscrafter-user-menu-redirects/assets/css/public.css?ver=lmscrafter-user-menu-redirects/assets/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

lmsc-rsum-diagnostics-notice

Data Attributes

data-nonce-urldata-nonce-actiondata-nonce-field

JS Globals

LMSC_RSUM_Admin

REST Endpoints

/wp-json/lmsc-rsum/v1/options

FAQ