5 matches found
CVE-2023-47818
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in LWS LWS Hide Login allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LWS Hide Login: from n/a through 2.1.8...
CVE-2023-47818
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in LWS LWS Hide Login allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LWS Hide Login: from n/a through 2.1.8...
CVE-2023-47818 WordPress LWS Hide Login plugin <= 2.1.8 - Secret Login Page Location Disclosure on Multisites vulnerability
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in LWS LWS Hide Login allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LWS Hide Login: from n/a through 2.1.8...
CVE-2023-47818
CVE-2023-47818 affects LWS Hide Login (WordPress plugin) up to version 2.1.8. The issue is a protection mechanism bypass that could allow an unauthenticated actor to access login functionality by visiting install.php, effectively bypassing the hidden login protection. Patch/mitigation: upgrade to...
WordPress LWS Hide Login Plugin <= 2.1.8 is vulnerable to Bypass Vulnerability
Software LWS Hide Login Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2023-47818 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID 6d52db64950c Credits Naveen Muthusamy Required privilege...