WordPress Plugin Vulnerabilities

Hide My WP Ghost < 5.2.02 - Hidden Login Page Disclosure

Description

The plugin does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page.

Proof of Concept

Affects Plugins

Plugin icon
hide-my-wp
Fixed in 5.2.02

References

CVE
CVE-2024-6420
URL
https://plugins.trac.wordpress.org/changeset/3105255
URL
https://www.sprocketsecurity.com/resources/discovering-wp-admin-urls-in-wordpress-with-gravityforms

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Juan Pablo Gomez Postigo
Submitter
Juan Pablo Gomez Postigo
Submitter website
https://www.sprocketsecurity.com/resources/
Submitter twitter
jpgp__
Verified
Yes
WPVDB ID
dfda6577-81aa-4397-a2d6-1d736f9ebd44

Timeline

Publicly Published
2024-07-02 (about 1 year ago)
Added
2024-07-02 (about 1 year ago)
Last Updated
2024-07-02 (about 1 year ago)

Other

Published
Title
Published
2023-02-27
Title
Shortcodes Ultimate < 5.12.8 - Subscriber+ Arbitrary Post Access
Published
2024-08-28
Title
Premium SEO Pack – WP SEO Plugin <= 1.6.002 - Unauthenticated Information Exposure
Published
2025-12-12
Title
Ultimate Auction <= 4.3.2 - Unauthenticated Information Exposure
Published
2024-12-11
Title
Accept Stripe Payments Using Contact Form 7 < 2.6 - Unauthenticated Information Exposure
Published
2024-11-08
Title
CE21 Suite <= 2.2.0 - JWT Token Disclosure