Does Temporary Login have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Temporary Login compatible with WordPress 6.7.5?

According to WordPress.org data, Temporary Login 1.3.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Temporary Login compatible with PHP 7.4+?

Temporary Login requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Temporary Login updated?

Temporary Login was last updated on Nov 26, 2024. Frequent updates are generally a positive security signal.

What is Temporary Login's security score?

Temporary Login has a WP-Safety security score of 86/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Temporary Login Security & Risk Analysis

wordpress.org/plugins/temporary-login

Create a secure, temporary URL for easy access to your WP admin.

40K active installs v1.3.0 PHP 7.4+ WP 6.2+ Updated Nov 26, 2024

loginpasswordless-logintemporary-accesstemporary-login

A · Safe

CVEs total1

Unpatched0

Last CVEApr 30, 2026

Plugin page Download

Safety Verdict

Is Temporary Login Safe to Use in 2026?

Generally Safe

Score 86/100

Temporary Login has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Apr 30, 2026Updated 1yr ago

Risk Assessment

The "temporary-login" plugin v1.3.0 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The code analysis reveals no dangerous functions, all SQL queries are properly prepared, and all output is correctly escaped. Crucially, the plugin implements nonce and capability checks for all its AJAX handlers, which represent its entire attack surface. Taint analysis also found no vulnerabilities, indicating no obvious pathways for malicious data injection.

The plugin's vulnerability history is also completely clean, with no recorded CVEs of any severity. This lack of historical issues, combined with the robust code practices observed, suggests a developer who is security-conscious and diligent in their coding. The absence of vulnerabilities in the past and the current thorough security implementation provides a high degree of confidence in the plugin's security. However, the attack surface, though protected, is entirely reliant on these checks being consistently applied. While the current analysis shows this, future updates or unforeseen interactions could introduce new risks.

Vulnerabilities

1 published

Temporary Login Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

Critical

1 total CVE

CVE-2026-7567critical · 9.8Authentication Bypass Using an Alternate Path or Channel

Temporary Login <= 1.0.0 - Authentication Bypass to Account Takeover

Apr 30, 2026 Patched in 1.1.0 (1d)

Version History

Temporary Login Release Timeline

v1.3.0Current

v1.2.0

v1.1.0

v1.0.01 CVE

CVE-2026-7567

Code Analysis

Analyzed Mar 16, 2026

Temporary Login Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

100% escaped12 total outputs

Attack Surface

Temporary Login Attack Surface

Entry Points6

Unprotected0

AJAX Handlers 6

authwp_ajax_temporary_login_pointer_dismissedcore\admin-pointer.php:14

authwp_ajax_temporary_login_get_app_datacore\ajax.php:13

authwp_ajax_temporary_login_generate_temporary_usercore\ajax.php:14

authwp_ajax_temporary_login_revoke_temporary_userscore\ajax.php:15

authwp_ajax_temporary_login_extend_accesscore\ajax.php:16

authwp_ajax_temporary_login_send_login_by_elementor_connectcore\ajax.php:17

WordPress Hooks 11

actionadmin_print_footer_scripts-index.phpcore\admin-pointer.php:13

actionadmin_menucore\admin.php:22

filterallow_password_resetcore\admin.php:26

filterwp_authenticate_usercore\admin.php:27

actioninitcore\admin.php:29

actioninitcore\admin.php:30

actionadmin_initcore\admin.php:32

actionelementor/connect/apps/registercore\admin.php:35

actionplugins_loadedtemporary-login.php:30

actionadmin_noticestemporary-login.php:33

actionadmin_noticestemporary-login.php:35

Maintenance & Trust

Temporary Login Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedNov 26, 2024

PHP min version7.4

Downloads137K

Community Trust

Rating80/100

Number of ratings4

Active installs40K

Alternatives

Temporary Login Alternatives

Bifröst – Instant Passwordless Temporary Login Links

create-temporary-login

🔗️ Create passwordless temporary login links. Instantly ⚡️

50 1 CVE

Temporary Login Without Password

temporary-login-without-password

100

Create self-expiring, temporary admin accounts. Easily share direct login links (no need for username/password) with your developers or editors.

100K 1 CVE

Password Protect – Temporary Login Without Password & Password Protect Entire Site

smart-password-protect

100

Password Protect entire site & create Temporary Login Without Password links. Simple & secure access for developers or maintenance.

80 No CVEs

Login Links – Passwordless Login, Temporary Access Links & Custom Login Form

100

Create secure self-expiring login links for temporary access and guest users, and enable passwordless login for registered ones.

40 No CVEs

SafeTemp Login – Temporary Access with Approval

safetemplogin-tawa

100

Create temporary users with any role. When a temporary user is an administrator, sensitive actions require approval from a real administrator.

0 No CVEs

Developer Profile

Temporary Login Developer Profile

Elementor

15 plugins · 13.2M total installs

trust score

Avg Security Score

95/100

Avg Patch Time

643 days

View full developer profile

Detection Fingerprints

How We Detect Temporary Login

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/temporary-login/assets/admin.js/wp-content/plugins/temporary-login/assets/admin.css

Script Paths

/wp-content/plugins/temporary-login/assets/admin.js

Version Parameters

temporary-login/assets/admin.css?ver=temporary-login/assets/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

temporary-login-admin

HTML Comments

Data Attributes

data-noncedata-user-iddata-user-namedata-login-urldata-logout-url

JS Globals

TemporaryLoginConfig

FAQ