A vulnerability labeled as problematic has been found in manuelpadillac MP Customize Login Page Plugin up to 1.0 on WordPress. Impacted is the function enter_mpclp_login_options of the component Customize Login Page . Executing a manipulation can lead to cross-site request forgery. This vulnerability is registered as CVE-2026-6292 . It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.