Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2024/06/04 10:40 a.m.15 views

CVE-2023-48335 WordPress Hide login page plugin <= 1.1.9 - Secret Login Page Location Disclosure on Multisites vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Webcraftic Hide login page allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Hide login page: from n/a through 1.1.9...

3.7CVSS6.8AI score0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/04 10:40 a.m.27 views

CVE-2023-48335 WordPress Hide login page plugin <= 1.1.9 - Secret Login Page Location Disclosure on Multisites vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Webcraftic Hide login page allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Hide login page: from n/a through 1.1.9...

3.7CVSS4.2AI score0.00303EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/23 12:0 a.m.9 views

WordPress Hide login page Plugin <= 1.1.9 is vulnerable to Bypass Vulnerability

Software Hide login page Type Plugin Vulnerable versions = 1.1.9 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2023-48335 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID b14b2f707de8 Credits Naveen Muthusamy Required privilege...

3.7CVSS6.9AI score0.00303EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/10/16 8:15 p.m.4 views

CVE-2023-5089

The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the authredirect WordPress function, allowing an unauthenticated visitor to access the login page, even when the hide login page functionality of the plugin is enabled...

5.3CVSS5.8AI score0.02235EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.9 views

PT-2023-31704

Name of the Vulnerable Software and Affected Versions Defender Security WordPress plugin versions prior to 4.1.0 Description The issue allows an unauthenticated visitor to access the login page, even when the hide login page functionality of the plugin is enabled, due to the plugin not preventing...

5.3CVSS6AI score0.02235EPSS
Exploits3References8
Positive Technologies
Positive Technologies
added 2023/06/07 12:0 a.m.5 views

PT-2023-11852 · WordPress · Wps Hide Login

Name of the Vulnerable Software and Affected Versions: WPS Hide Login plugin for WordPress versions up to, and including, 1.5.4.2 Description: The issue allows unauthenticated attackers to brute force credentials on sites, even when the plugin settings are set to hide the login page. This enables...

7.5CVSS7.5AI score0.00777EPSS
Exploits1References6
Rows per page
Query Builder