Does Unauthorised Login Redirect have any unpatched vulnerabilities?

No. All known vulnerabilities in Unauthorised Login Redirect have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Unauthorised Login Redirect compatible with WordPress 6.4.8?

According to WordPress.org data, Unauthorised Login Redirect 0.3.9.1 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

How often is Unauthorised Login Redirect updated?

Unauthorised Login Redirect was last updated on Dec 21, 2023. Frequent updates are generally a positive security signal.

What is Unauthorised Login Redirect's security score?

Unauthorised Login Redirect has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Unauthorised Login Redirect Security & Risk Analysis

wordpress.org/plugins/unauthorised-login-redirect

This plugin allows you to effectively hide your wp-login.php and wp-admin by requiring that you access it via a custom URL.

200 active installs v0.3.9.1 PHP + WP 4.3+ Updated Dec 21, 2023

loginredirectsecuritywp-loginwp-admin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Unauthorised Login Redirect Safe to Use in 2026?

Generally Safe

Score 85/100

Unauthorised Login Redirect has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "unauthorised-login-redirect" plugin version 0.3.9.1 exhibits a strong security posture based on the provided static analysis and vulnerability history. The plugin has zero known CVEs and no recorded vulnerabilities, suggesting a well-maintained and secure codebase. The static analysis reveals a minimal attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication. Furthermore, the code demonstrates good security practices by exclusively using prepared statements for SQL queries, having a good rate of output escaping (79%), and implementing a nonce check. The absence of taint analysis findings, dangerous functions, file operations, and external HTTP requests further bolsters its security profile.

Key Concerns

Output escaping is not 100%
Capability checks are missing

Vulnerabilities

None known

Unauthorised Login Redirect Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Unauthorised Login Redirect Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

79% escaped19 total outputs

Attack Surface

Unauthorised Login Redirect Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadmin_enqueue_scriptsunauthorised-login-redirect.php:49

actionadmin_menuunauthorised-login-redirect.php:50

actioninitunauthorised-login-redirect.php:51

actioninitunauthorised-login-redirect.php:52

actiontemplate_redirectunauthorised-login-redirect.php:53

filterplugin_action_linksunauthorised-login-redirect.php:55

Maintenance & Trust

Unauthorised Login Redirect Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedDec 21, 2023

PHP min version

Downloads6K

Community Trust

Rating86/100

Number of ratings4

Active installs200

Alternatives

Unauthorised Login Redirect Alternatives

Admin Login Hide – PTI

admin-login-hide-pti

100

Easily hide or customize your WordPress login URL to enhance security and prevent unauthorized access.

10 No CVEs

WP-Login and WP-Admin Whitelist

swiftninjapro-wp-login-whitelist-ip

A Plugin That only allows whitelisted IP's, or optionally whitelisted browsers, to access wp-login, or optionally wp-admin.

10 No CVEs

Basic Auth for WP-Admin

basic-auth-for-wp-admin

100

Add an additional layer of security with this super light plugin that adds a basic authentication HTTP to the wp-admin and wp-login pages.

0 No CVEs

Secure WordPress Admin – Change & Hide Login URL

change-hide-login-url

100

Secure and customize your WordPress admin login by changing the default wp-login.php URL to a custom slug and blocking unauthorized access to wp-admin …

0 No CVEs

Custom Login URL Manager – Hide Login Admin URL

custom-login-url-manager

100

Change the default WordPress login URL and redirect unauthorized attempts to a specified page for enhanced security.

0 No CVEs

Developer Profile

Unauthorised Login Redirect Developer Profile

RSimpson

2 plugins · 700 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Unauthorised Login Redirect

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/unauthorised-login-redirect/ulr/css/style.css

Version Parameters

unauthorised-login-redirect/ulr/css/style.css?ver=

HTML / DOM Fingerprints

HTML Comments

Create a random string

FAQ

Unauthorised Login Redirect Security & Risk Analysis

Is Unauthorised Login Redirect Safe to Use in 2026?

Generally Safe

Key Concerns

Unauthorised Login Redirect Security Vulnerabilities

Unauthorised Login Redirect Code Analysis

Output Escaping

Unauthorised Login Redirect Attack Surface

Unauthorised Login Redirect Maintenance & Trust

Maintenance Signals

Community Trust

Unauthorised Login Redirect Alternatives

Admin Login Hide – PTI

WP-Login and WP-Admin Whitelist

Basic Auth for WP-Admin

Secure WordPress Admin – Change & Hide Login URL

Custom Login URL Manager – Hide Login Admin URL

Unauthorised Login Redirect Developer Profile

How We Detect Unauthorised Login Redirect

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Unauthorised Login Redirect