WordPress WPS Hide Login plugin <= 1.6.1 - Login Page Protection Bypass vulnerability

2021-02-0500:00:00

Sebastian Schmitt

patchstack.com

wordpress

wps hide login

EPSS

0.002

Percentile

61.7%

Login Page Protection Bypass vulnerability discovered by Sebastian Schmitt in WordPress WPS Hide Login plugin (versions <= 1.6.1).

Solution

           Update the WordPress WPS Hide Login plugin to the latest available version (at least 1.7).

blog.sebastianschmitt.eu/security/wps-hide-login-1-6-1-protection-bypass-cve-2021-3332/

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3332

wordpress.org/plugins/wps-hide-login/#developers

EPSS

0.002

Percentile

61.7%

Related for PATCHSTACK:6AAF36371E2994E404BC92B18B95AB8C