Does Login with Vipps and MobilePay have any unpatched vulnerabilities?

No. All known vulnerabilities in Login with Vipps and MobilePay have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Login with Vipps and MobilePay compatible with WordPress 6.9.4?

According to WordPress.org data, Login with Vipps and MobilePay 1.4.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Login with Vipps and MobilePay compatible with PHP 7.2+?

Login with Vipps and MobilePay requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Login with Vipps and MobilePay updated?

Login with Vipps and MobilePay was last updated on Mar 2, 2026. Frequent updates are generally a positive security signal.

What is Login with Vipps and MobilePay's security score?

Login with Vipps and MobilePay has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Login with Vipps and MobilePay Security & Risk Analysis

wordpress.org/plugins/login-with-vipps

Login with Vipps and MobilePay is the easiest way to sign in and create an account. No need to worry about usernames and passwords.

900 active installs v1.4.0 PHP 7.2+ WP 6.1.0+ Updated Mar 2, 2026

loginmobilepayvippswoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVENov 27, 2024

Plugin page Download

Safety Verdict

Is Login with Vipps and MobilePay Safe to Use in 2026?

Generally Safe

Score 99/100

1 known CVELast CVE: Nov 27, 2024Updated 1mo ago

Risk Assessment

The "login-with-vipps" v1.4.0 plugin exhibits a mixed security posture. While it demonstrates good practices like a high percentage of prepared statements for SQL queries and a reasonable number of nonce and capability checks, there are significant areas of concern. The presence of 4 AJAX handlers without authentication checks creates a direct attack surface for unauthorized actions. Furthermore, the taint analysis revealed 6 flows with unsanitized paths, indicating potential vulnerabilities where user input is not properly validated before being used in sensitive operations, although no critical or high severity issues were identified in this analysis.

The plugin's vulnerability history, while currently showing no unpatched CVEs, includes a past medium-severity Cross-Site Scripting (XSS) vulnerability. This pattern suggests a history of input sanitization issues. The recent vulnerability date further emphasizes the need for vigilance. In conclusion, the plugin has strengths in its SQL handling and some security checks, but the unprotected AJAX endpoints and unsanitized data flows, coupled with a past XSS vulnerability, present notable risks that require attention for a more robust security posture.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Past medium XSS vulnerability

Vulnerabilities

Login with Vipps and MobilePay Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-11786medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Nov 27, 2024 Patched in 1.3.4 (1d)

Code Analysis

Analyzed Mar 16, 2026

Login with Vipps and MobilePay Code Analysis

Dangerous Functions

Raw SQL Queries

78 prepared

Unescaped Output

180 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

89% prepared88 total queries

Output Escaping

70% escaped258 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

8 flows6 with unsanitized paths

stored_admin_notices (ContinueWithVipps.class.php:316)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Login with Vipps and MobilePay Attack Surface

Entry Points18

Unprotected4

AJAX Handlers 10

authwp_ajax_login_vipps_dismiss_noticeContinueWithVipps.class.php:192

authwp_ajax_login_vipps_dismiss_noticetrunk\ContinueWithVipps.class.php:192

authwp_ajax_vipps_login_get_linktrunk\VippsLogin.class.php:116

noprivwp_ajax_vipps_login_get_linktrunk\VippsLogin.class.php:117

authwp_ajax_vipps_confirm_get_linktrunk\VippsLogin.class.php:118

authwp_ajax_vipps_synch_get_linktrunk\VippsLogin.class.php:119

authwp_ajax_vipps_login_get_linkVippsLogin.class.php:116

noprivwp_ajax_vipps_login_get_linkVippsLogin.class.php:117

authwp_ajax_vipps_confirm_get_linkVippsLogin.class.php:118

authwp_ajax_vipps_synch_get_linkVippsLogin.class.php:119

Shortcodes 8

[login-with-vipps] trunk\VippsLogin.class.php:754

[log-in-with-vipps] trunk\VippsLogin.class.php:755

[continue-with-vipps] trunk\VippsLogin.class.php:756

[woo-continue-with-vipps] trunk\VippsWooLogin.class.php:450

[login-with-vipps] VippsLogin.class.php:754

[log-in-with-vipps] VippsLogin.class.php:755

[continue-with-vipps] VippsLogin.class.php:756

[woo-continue-with-vipps] VippsWooLogin.class.php:450

WordPress Hooks 180

actioninitblocks\login-with-vipps-blocks.php:31

actionenqueue_block_editor_assetsblocks\login-with-vipps-blocks.php:37

actionenqueue_block_assetsblocks\login-with-vipps-blocks.php:48

actionwp_enqueue_scriptsblocks\login-with-vipps-blocks.php:63

actioninitblocks\login-with-vipps.php:119

actionadmin_noticesContinueWithVipps.class.php:194

actionadmin_enqueue_scriptsContinueWithVipps.class.php:196

actionadmin_noticesContinueWithVipps.class.php:229

actionadmin_noticesContinueWithVipps.class.php:290

actionadmin_noticesContinueWithVipps.class.php:301

actioninitlogin-with-vipps.php:71

actionplugins_loadedlogin-with-vipps.php:72

actionadmin_initlogin-with-vipps.php:74

actionadmin_menulogin-with-vipps.php:75

actionparse_requestlogin-with-vipps.php:79

actiontemplate_redirectlogin-with-vipps.php:80

actioninitlogin-with-vipps.php:91

actionadmin_initlogin-with-vipps.php:93

actiontemplate_redirectlogin-with-vipps.php:95

actioninitlogin-with-vipps.php:107

actionplugins_loadedlogin-with-vipps.php:108

actionadmin_initlogin-with-vipps.php:110

actioninittrunk\blocks\login-with-vipps-blocks.php:31

actionenqueue_block_editor_assetstrunk\blocks\login-with-vipps-blocks.php:37

actionenqueue_block_assetstrunk\blocks\login-with-vipps-blocks.php:48

actionwp_enqueue_scriptstrunk\blocks\login-with-vipps-blocks.php:63

actioninittrunk\blocks\login-with-vipps.php:119

actionadmin_noticestrunk\ContinueWithVipps.class.php:194

actionadmin_enqueue_scriptstrunk\ContinueWithVipps.class.php:196

actionadmin_noticestrunk\ContinueWithVipps.class.php:229

actionadmin_noticestrunk\ContinueWithVipps.class.php:290

actionadmin_noticestrunk\ContinueWithVipps.class.php:301

actioninittrunk\login-with-vipps.php:71

actionplugins_loadedtrunk\login-with-vipps.php:72

actionadmin_inittrunk\login-with-vipps.php:74

actionadmin_menutrunk\login-with-vipps.php:75

actionparse_requesttrunk\login-with-vipps.php:79

actiontemplate_redirecttrunk\login-with-vipps.php:80

actioninittrunk\login-with-vipps.php:91

actionadmin_inittrunk\login-with-vipps.php:93

actiontemplate_redirecttrunk\login-with-vipps.php:95

actioninittrunk\login-with-vipps.php:107

actionplugins_loadedtrunk\login-with-vipps.php:108

actionadmin_inittrunk\login-with-vipps.php:110

filterauthenticatetrunk\VippsLogin.class.php:85

actionwp_logouttrunk\VippsLogin.class.php:87

filterwp_login_errorstrunk\VippsLogin.class.php:89

actionpersonal_options_updatetrunk\VippsLogin.class.php:93

actionedit_user_profile_updatetrunk\VippsLogin.class.php:94

actionuser_profile_update_errorstrunk\VippsLogin.class.php:95

actionadmin_post_profile_disconnect_vippstrunk\VippsLogin.class.php:96

actioncontinue_with_vipps_page_logintrunk\VippsLogin.class.php:101

actioncontinue_with_vipps_before_page_logintrunk\VippsLogin.class.php:102

actionwp_enqueue_scriptstrunk\VippsLogin.class.php:105

actionlogin_formtrunk\VippsLogin.class.php:108

actionregister_formtrunk\VippsLogin.class.php:109

actionlogin_enqueue_scriptstrunk\VippsLogin.class.php:110

actioncontinue_with_vipps_logintrunk\VippsLogin.class.php:123

actioncontinue_with_vipps_error_logintrunk\VippsLogin.class.php:124

actioncontinue_with_vipps_confirmtrunk\VippsLogin.class.php:127

actioncontinue_with_vipps_error_confirmtrunk\VippsLogin.class.php:128

actioncontinue_with_vipps_error_wordpress_confirmtrunk\VippsLogin.class.php:129

actioncontinue_with_vipps_synchtrunk\VippsLogin.class.php:132

actioncontinue_with_vipps_error_synchtrunk\VippsLogin.class.php:133

actioncontinue_with_vipps_error_wordpress_synchtrunk\VippsLogin.class.php:134

actioncontinue_with_vipps_confirm_logintrunk\VippsLogin.class.php:137

actioncontinue_with_vipps_error_confirm_logintrunk\VippsLogin.class.php:138

actionadmin_enqueue_scriptstrunk\VippsLogin.class.php:285

actionedit_user_profile_updatetrunk\VippsLogin.class.php:291

actionedit_user_profiletrunk\VippsLogin.class.php:292

actionshow_user_profiletrunk\VippsLogin.class.php:295

actionadmin_noticestrunk\VippsLogin.class.php:309

actionadmin_noticestrunk\VippsLogin.class.php:314

actionadmin_noticestrunk\VippsLogin.class.php:418

filterthe_contenttrunk\VippsLogin.class.php:874

filterattach_session_informationtrunk\VippsLogin.class.php:1019

actionwoocommerce_before_customer_login_formtrunk\VippsWooLogin.class.php:64

actionwoocommerce_login_form_starttrunk\VippsWooLogin.class.php:65

actionwoocommerce_register_form_starttrunk\VippsWooLogin.class.php:66

actionwoocommerce_account_dashboardtrunk\VippsWooLogin.class.php:69

actionwoocommerce_account_contenttrunk\VippsWooLogin.class.php:70

filterwoocommerce_account_menu_itemstrunk\VippsWooLogin.class.php:71

actionwoocommerce_account_vipps_endpointtrunk\VippsWooLogin.class.php:72

filteradd_query_varstrunk\VippsWooLogin.class.php:73

filterthe_titletrunk\VippsWooLogin.class.php:74

filterwp_enqueue_scriptstrunk\VippsWooLogin.class.php:78

actionadmin_post_disconnect_vippstrunk\VippsWooLogin.class.php:80

actioncontinue_with_vipps_before_woocommerce_login_redirecttrunk\VippsWooLogin.class.php:83

filtercontinue_with_vipps_woocommerce_users_can_registertrunk\VippsWooLogin.class.php:84

filtercontinue_with_vipps_woocommerce_create_userdatatrunk\VippsWooLogin.class.php:85

filtercontinue_with_vipps_woocommerce_create_usernametrunk\VippsWooLogin.class.php:86

filtercontinue_with_vipps_after_create_woocommerce_usertrunk\VippsWooLogin.class.php:87

filtercontinue_with_vipps_woocommerce_allow_logintrunk\VippsWooLogin.class.php:88

filtercontinue_with_vipps_before_woocommerce_user_logintrunk\VippsWooLogin.class.php:89

filtercontinue_with_vipps_error_woocommerce_login_create_sessiontrunk\VippsWooLogin.class.php:90

filtercontinue_with_vipps_error_woocommerce_login_redirecttrunk\VippsWooLogin.class.php:91

actioncontinue_with_vipps_error_woocommerce_logintrunk\VippsWooLogin.class.php:92

actioncontinue_with_vipps_woocommerce_confirm_before_redirecttrunk\VippsWooLogin.class.php:95

filtercontinue_with_vipps_woocommerce_confirm_redirecttrunk\VippsWooLogin.class.php:96

actioncontinue_with_vipps_error_woocommerce_confirmtrunk\VippsWooLogin.class.php:97

filtercontinue_with_vipps_error_woocommerce_confirm_redirecttrunk\VippsWooLogin.class.php:98

actioncontinue_with_vipps_woocommerce_synchtrunk\VippsWooLogin.class.php:101

filtercontinue_with_vipps_woocommerce_synch_redirecttrunk\VippsWooLogin.class.php:102

actioncontinue_with_vipps_error_woocommerce_synchtrunk\VippsWooLogin.class.php:103

filtercontinue_with_vipps_error_woocommerce_synch_redirecttrunk\VippsWooLogin.class.php:104

actionwoocommerce_after_edit_account_address_formtrunk\VippsWooLogin.class.php:105

actionwoocommerce_customer_save_addresstrunk\VippsWooLogin.class.php:108

actionwoocommerce_proceed_to_checkouttrunk\VippsWooLogin.class.php:117

actionwoocommerce_widget_shopping_cart_buttonstrunk\VippsWooLogin.class.php:118

actionwoocommerce_before_checkout_formtrunk\VippsWooLogin.class.php:119

actionwoo_vipps_show_express_checkouttrunk\VippsWooLogin.class.php:303

filterlogin_redirecttrunk\VippsWooLogin.class.php:644

filterauthenticateVippsLogin.class.php:85

actionwp_logoutVippsLogin.class.php:87

filterwp_login_errorsVippsLogin.class.php:89

actionpersonal_options_updateVippsLogin.class.php:93

actionedit_user_profile_updateVippsLogin.class.php:94

actionuser_profile_update_errorsVippsLogin.class.php:95

actionadmin_post_profile_disconnect_vippsVippsLogin.class.php:96

actioncontinue_with_vipps_page_loginVippsLogin.class.php:101

actioncontinue_with_vipps_before_page_loginVippsLogin.class.php:102

actionwp_enqueue_scriptsVippsLogin.class.php:105

actionlogin_formVippsLogin.class.php:108

actionregister_formVippsLogin.class.php:109

actionlogin_enqueue_scriptsVippsLogin.class.php:110

actioncontinue_with_vipps_loginVippsLogin.class.php:123

actioncontinue_with_vipps_error_loginVippsLogin.class.php:124

actioncontinue_with_vipps_confirmVippsLogin.class.php:127

actioncontinue_with_vipps_error_confirmVippsLogin.class.php:128

actioncontinue_with_vipps_error_wordpress_confirmVippsLogin.class.php:129

actioncontinue_with_vipps_synchVippsLogin.class.php:132

actioncontinue_with_vipps_error_synchVippsLogin.class.php:133

actioncontinue_with_vipps_error_wordpress_synchVippsLogin.class.php:134

actioncontinue_with_vipps_confirm_loginVippsLogin.class.php:137

actioncontinue_with_vipps_error_confirm_loginVippsLogin.class.php:138

actionadmin_enqueue_scriptsVippsLogin.class.php:285

actionedit_user_profile_updateVippsLogin.class.php:291

actionedit_user_profileVippsLogin.class.php:292

actionshow_user_profileVippsLogin.class.php:295

actionadmin_noticesVippsLogin.class.php:309

actionadmin_noticesVippsLogin.class.php:314

actionadmin_noticesVippsLogin.class.php:418

filterthe_contentVippsLogin.class.php:874

filterattach_session_informationVippsLogin.class.php:1019

actionwoocommerce_before_customer_login_formVippsWooLogin.class.php:64

actionwoocommerce_login_form_startVippsWooLogin.class.php:65

actionwoocommerce_register_form_startVippsWooLogin.class.php:66

actionwoocommerce_account_dashboardVippsWooLogin.class.php:69

actionwoocommerce_account_contentVippsWooLogin.class.php:70

filterwoocommerce_account_menu_itemsVippsWooLogin.class.php:71

actionwoocommerce_account_vipps_endpointVippsWooLogin.class.php:72

filteradd_query_varsVippsWooLogin.class.php:73

filterthe_titleVippsWooLogin.class.php:74

filterwp_enqueue_scriptsVippsWooLogin.class.php:78

actionadmin_post_disconnect_vippsVippsWooLogin.class.php:80

actioncontinue_with_vipps_before_woocommerce_login_redirectVippsWooLogin.class.php:83

filtercontinue_with_vipps_woocommerce_users_can_registerVippsWooLogin.class.php:84

filtercontinue_with_vipps_woocommerce_create_userdataVippsWooLogin.class.php:85

filtercontinue_with_vipps_woocommerce_create_usernameVippsWooLogin.class.php:86

filtercontinue_with_vipps_after_create_woocommerce_userVippsWooLogin.class.php:87

filtercontinue_with_vipps_woocommerce_allow_loginVippsWooLogin.class.php:88

filtercontinue_with_vipps_before_woocommerce_user_loginVippsWooLogin.class.php:89

filtercontinue_with_vipps_error_woocommerce_login_create_sessionVippsWooLogin.class.php:90

filtercontinue_with_vipps_error_woocommerce_login_redirectVippsWooLogin.class.php:91

actioncontinue_with_vipps_error_woocommerce_loginVippsWooLogin.class.php:92

actioncontinue_with_vipps_woocommerce_confirm_before_redirectVippsWooLogin.class.php:95

filtercontinue_with_vipps_woocommerce_confirm_redirectVippsWooLogin.class.php:96

actioncontinue_with_vipps_error_woocommerce_confirmVippsWooLogin.class.php:97

filtercontinue_with_vipps_error_woocommerce_confirm_redirectVippsWooLogin.class.php:98

actioncontinue_with_vipps_woocommerce_synchVippsWooLogin.class.php:101

filtercontinue_with_vipps_woocommerce_synch_redirectVippsWooLogin.class.php:102

actioncontinue_with_vipps_error_woocommerce_synchVippsWooLogin.class.php:103

filtercontinue_with_vipps_error_woocommerce_synch_redirectVippsWooLogin.class.php:104

actionwoocommerce_after_edit_account_address_formVippsWooLogin.class.php:105

actionwoocommerce_customer_save_addressVippsWooLogin.class.php:108

actionwoocommerce_proceed_to_checkoutVippsWooLogin.class.php:117

actionwoocommerce_widget_shopping_cart_buttonsVippsWooLogin.class.php:118

actionwoocommerce_before_checkout_formVippsWooLogin.class.php:119

actionwoo_vipps_show_express_checkoutVippsWooLogin.class.php:303

filterlogin_redirectVippsWooLogin.class.php:644

Maintenance & Trust

Login with Vipps and MobilePay Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 2, 2026

PHP min version7.2

Downloads31K

Community Trust

Rating100/100

Number of ratings4

Active installs900

Alternatives

Login with Vipps and MobilePay Alternatives

Pay with Vipps and MobilePay for WooCommerce

woo-vipps

100

Official Vipps MobilePay payment plugin for WooCommerce.

5K 1 CVE

Vipps/MobilePay recurring payments for WooCommerce

vipps-recurring-payments-gateway-for-woocommerce

100

Vipps/MobilePay recurring payments is perfect if you run a shop with subscription based services or products that would benefit from subscriptions.

90 No CVEs

Login & Register Customizer – Popup | Slider | Inline | WooCommerce

easy-login-woocommerce

Replace your old login/registration form with an interactive popup & inline form design

40K 6 CVEs

WSMS (formerly WP SMS) – SMS & MMS Notifications with OTP and 2FA for WooCommerce

wp-sms

Send SMS/MMS notifications, OTP & 2FA messages, and WooCommerce updates with support for multiple gateways and plugin integrations.

9K 15 CVEs

Force Authentification Before Checkout for WooCommerce

woo-force-authentification-before-checkout

100

Force customer to log in or register before checkout

7K No CVEs

Developer Profile

Login with Vipps and MobilePay Developer Profile

WP Hosting AS

2 plugins · 6K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

14 days

View full developer profile

Detection Fingerprints

How We Detect Login with Vipps and MobilePay

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/login-with-vipps/dist/css/vipps-login.css/wp-content/plugins/login-with-vipps/dist/js/vipps-login.js/wp-content/plugins/login-with-vipps/dist/css/vipps-login-checkout.css/wp-content/plugins/login-with-vipps/dist/js/vipps-login-checkout.js/wp-content/plugins/login-with-vipps/dist/js/vipps-login-checkout-woo.js

Script Paths

/wp-content/plugins/login-with-vipps/dist/js/vipps-login.js/wp-content/plugins/login-with-vipps/dist/js/vipps-login-checkout.js/wp-content/plugins/login-with-vipps/dist/js/vipps-login-checkout-woo.js

Version Parameters

login-with-vipps/dist/css/vipps-login.css?ver=login-with-vipps/dist/js/vipps-login.js?ver=login-with-vipps/dist/css/vipps-login-checkout.css?ver=login-with-vipps/dist/js/vipps-login-checkout.js?ver=login-with-vipps/dist/js/vipps-login-checkout-woo.js?ver=

HTML / DOM Fingerprints

CSS Classes

vipps-login-buttonvipps-checkout-buttonvipps-login-wrapper

HTML Comments

Data Attributes

data-vipps-login-buttondata-vipps-checkout-button

JS Globals

vippsLoginData

Shortcode Output

[vipps_login_button][vipps_checkout_button]

FAQ