WP-Safety

Multi-Email Login Security & Risk Analysis

wordpress.org/plugins/multi-email-login

Allow users to login with multiple email addresses on a single WordPress account.

0 active installs v1.0.2 PHP 7.2+ WP 5.0+ Updated Jan 5, 2026
authenticationemailloginmultiple-emailsuser-management
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Multi-Email Login Safe to Use in 2026?

Generally Safe

Score 100/100

Multi-Email Login has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The "multi-email-login" v1.0.2 plugin demonstrates a strong security posture based on the provided static analysis. All identified entry points (two AJAX handlers) are protected with both nonce and capability checks, indicating good development practices. The code utilizes prepared statements for all SQL queries, ensuring protection against SQL injection. Furthermore, all output is properly escaped, mitigating cross-site scripting (XSS) vulnerabilities. The absence of file operations and external HTTP requests reduces the potential attack surface. The plugin also benefits from a clean vulnerability history with no recorded CVEs, suggesting a history of secure development or prompt patching by developers.

Vulnerabilities
None known

Multi-Email Login Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Multi-Email Login Release Timeline

v1.0.2Current
v1.0.1
Code Analysis
Analyzed Mar 17, 2026

Multi-Email Login Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
21 escaped
Nonce Checks
2
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped21 total outputs
Attack Surface

Multi-Email Login Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 2

authwp_ajax_melog_add_emailincludes\class-mel-user-profile.php:59
authwp_ajax_melog_remove_emailincludes\class-mel-user-profile.php:60
WordPress Hooks 8
filterauthenticateincludes\class-mel-authentication.php:51
filterpre_get_user_by_emailincludes\class-mel-authentication.php:54
actionshow_user_profileincludes\class-mel-user-profile.php:51
actionedit_user_profileincludes\class-mel-user-profile.php:52
actionpersonal_options_updateincludes\class-mel-user-profile.php:55
actionedit_user_profile_updateincludes\class-mel-user-profile.php:56
actionadmin_enqueue_scriptsincludes\class-mel-user-profile.php:63
actionplugins_loadedmulti-email-login.php:53
Maintenance & Trust

Multi-Email Login Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 5, 2026
PHP min version7.2
Downloads161

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Multi-Email Login Alternatives

Force Login With Email

Force Login With Email

force-login-with-email

A
85

Enable login in WordPress only with user e-mail address.

200 No CVEs
Email OTP Login

Email OTP Login

email-otp-login

A
100

Adds OTP (One-Time Password) verification after login for enhanced security in WordPress. OTP is sent to the user's email.

30 No CVEs
Gp user Login With EMail-ID

Gp user Login With EMail-ID

gp-user-login-with-email-id

A
85

Allow user to login with their Email ID.

10 No CVEs
Magento User Compatibility

Magento User Compatibility

magento-user-compatibility

A
85

This plugin will automatically rehash the passwords of users you have beforehand imported from a Magento database to your WP database.

10 No CVEs
MojoAuth Passwordless Authentication

MojoAuth Passwordless Authentication

mojoauth

A
85

MojoAuth provides a secure and delightful experience to your customer with passwordless. Here, you'll find comprehensive guides and documentation …

10 No CVEs
Developer Profile

Multi-Email Login Developer Profile

mdburnette

7 plugins · 2K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Multi-Email Login

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/multi-email-login/assets/css/melog-admin.css/wp-content/plugins/multi-email-login/assets/js/melog-admin.js

HTML / DOM Fingerprints

CSS Classes
melog-email-itemmelog-email-textmelog-remove-emailmelog-add-email-formmelog-add-emailmelog-inline-message
Data Attributes
data-emaildata-user-idid="melog_secondary_email"placeholder="Enter additional email address"
JS Globals
melog_ajax_object
FAQ

Frequently Asked Questions about Multi-Email Login