Weberge: Security Vulnerabilities
The WP Hide WordPress plugin through 0.0.2 does not have authorisation and CSRF checks in place when updating the custom_wpadmin_slug settings, allowing unauthenticated attackers to update it with a crafted request
CVSS Score
5.3
EPSS Score
0.001
Published
2022-11-07