Vulnerabilities (CVE)

Filtered by vendor Weberge Subscribe
Filtered by product Wp Hide
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-3489 1 Weberge 1 Wp Hide 2024-11-21 N/A 5.3 MEDIUM
The WP Hide WordPress plugin through 0.0.2 does not have authorisation and CSRF checks in place when updating the custom_wpadmin_slug settings, allowing unauthenticated attackers to update it with a crafted request