MembershipWorks Login Connector Security & Risk Analysis

The memberfindme-login-connector plugin version 6.4 exhibits a concerning security posture due to a significant number of unprotected entry points. All three identified AJAX handlers lack authentication checks, presenting a direct avenue for attackers to interact with potentially sensitive functionalities. While the plugin demonstrates good practices in its handling of SQL queries, ensuring they are prepared statements, and has no recorded vulnerability history, these strengths are overshadowed by the critical lack of authorization on its AJAX endpoints. The taint analysis also revealed flows with unsanitized paths, although these did not escalate to critical or high severity, they warrant attention as potential precursors to more severe issues if combined with exploitable entry points. The absence of nonce checks further exacerbates the risk associated with the unprotected AJAX handlers. Overall, while the plugin is free of known vulnerabilities and handles database interactions securely, its direct exposure of AJAX endpoints without proper authentication and authorization is a significant security weakness that requires immediate attention.