Really Simple Security logo

Log out
Get PRO

Limit Login Attempts

  • Limit Login Attempts on WordPress.org
  • Current version: 1.7.2
  • Last update: April 4, 2023
  • Known issues: Fixed
The Limit Login Attempts plugin for WordPress limits the number of login attempts possible through normal login and auth cookies, making brute-force attacks difficult or impossible. It allows for customization of the number of retry attempts and informs users about remaining retries or lockout time on the login page. Optional logging and email notifications are available, and the plugin handles servers behind reverse proxies. The plugin is available in multiple languages and uses standard actions and filters only.

This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Submit

Vulnerabilities

  • Input validation vulnerability in Limit Login Attempts 4.0.50

    Fixed

    The Limit Login Attempts WordPress plugin had a security issue before version 4.0.50. Attackers could control what showed up in the reports table by sending certain information through their web brows...

    Read More

  • Input validation vulnerability in Limit Login Attempts 4.0.71

    Fixed

    The Limit Login Attempts WordPress plugin

    Read More

  • Input validation vulnerability in Limit Login Attempts 1.7.1

    Fixed

    The Limit Login Attempts plugin for WordPress is not secure in versions up to 1.7.1. This means that unauthenticated attackers can inject malicious web scripts into pages which will then be executed w...

    Read More

  • Authentication vulnerability in Limit Login Attempts 1.7.0

    Fixed

    The Limit Login Attempts plugin

    Read More

  • Input validation vulnerability in Limit Login Attempts 1.7.1

    Fixed

    The Limit Login Attempts plugin for WordPress

    Read More