Wps Hide Login@* Security Vulnerabilities and Issues — Wps Hide Login@* CVE List

Lucene search

WpserveurWps Hide Login*

3 matches found

CVE•added 2024/07/15 6:15 a.m.•63 views

CVE-2024-6289

The WPS Hide Login WordPress plugin before 1.9.16.4 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page.

6.1CVSS6.3AI score0.02289EPSS

CVE•added 2024/06/11 3:15 a.m.•59 views

CVE-2024-2473

The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 1.9.15.2. This is due to a bypass that is created when the 'action=postpass' parameter is supplied. This makes it possible for attackers to easily discover any login page that may ha...

5.3CVSS5.6AI score0.09297EPSS

CVE•added 2024/06/04 11:15 a.m.•30 views

CVE-2023-49748

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPServeur, NicolasKulka, wpformation WPS Hide Login allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPS Hide Login: from n/a through 1.9.11.

3.7CVSS4.1AI score0.00414EPSS