CVE-2024-6289 | WPS Hide Login Plugin 1.9.1 on WordPress Login Page auth_redirect

Posted by Angelo Barbosa | Jul 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in WPS Hide Login Plugin 1.9.1 on WordPress. Affected by this issue is the function auth_redirect of the component Login Page. The manipulation leads to open redirect.

This vulnerability is handled as CVE-2024-6289. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6289 | WPS Hide Login Plugin 1.9.1 on WordPress Login Page auth_redirect

Related Posts

CVE-2024-3295 | User Registration Plugin up to 3.1.5 on WordPress authorization

CVE-2024-21665 | Pimcore ecommerce-framework-bundle access control

CVE-2024-39250 | EfroTech Timetrax 8.3 Search Web Interface q sql injection

CVE-2024-7282 | SourceCodester Lot Reservation Management System 1.0 /admin/manage_model.php id sql injection