Vulnerabilities > Wpserveur > WPS Hide Login > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-15 CVE-2024-6289 Open Redirect vulnerability in Wpserveur WPS Hide Login
The WPS Hide Login WordPress plugin before 1.9.16.4 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page.
network
low complexity
wpserveur CWE-601
6.1
2021-03-01 CVE-2021-3332 Improper Authentication vulnerability in Wpserveur WPS Hide Login 1.6.1
WPS Hide Login 1.6.1 allows remote attackers to bypass a protection mechanism via post_password.
network
low complexity
wpserveur CWE-287
5.3