The WPS Hide Login plugin for WordPress is vulnerable to login page disclosure even when the settings of the plugin are set to hide the login page making it possible for unauthenticated attackers to brute force credentials on sites in versions up to, and including, 1.5.4.2.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-06-07T01:51:26.862Z
Updated: 2024-08-04T17:37:06.354Z
Reserved: 2023-06-06T12:49:59.185Z
Link: CVE-2020-36710
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-06-07T02:15:11.637
Modified: 2023-11-07T03:22:28.433
Link: CVE-2020-36710
Redhat
No data.