CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-3489

The WP Hide WordPress plugin through 0.0.2 does not have authorisation and CSRF checks in place when updating the custom_wpadmin_slug settings, allowing unauthenticated attackers to update it with a crafted request

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.1%

CVSS Severity

CVSS v3 Score 5.3

References

https://wpscan.com/vulnerability/36d78b6c-0da5-44f8-b7b3-eae78edac505
https://wpscan.com/vulnerability/36d78b6c-0da5-44f8-b7b3-eae78edac505

Products affected by CVE-2022-3489

Weberge » Wp Hide » Version: 0.0.2

cpe:2.3:a:weberge:wp_hide:0.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3489

Products

Pricing

Contact Us