CVE-2024-6420
July 23, 2024, 6:15 a.m.
Tags
Product(s) Impacted
Hide My WP Ghost WordPress plugin
- before 5.2.02
Description
The Hide My WP Ghost WordPress plugin before 5.2.02 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page.
Weaknesses
Date
Published: July 23, 2024, 6:15 a.m.
Last Modified: July 23, 2024, 6:15 a.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
contact@wpscan.com
References
https://wpscan.com/
contact@wpscan.com