Skip to main content

Hide My Wp

2 CVEs product

Monthly

CVE-2021-36917 HIGH POC This Week

WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Hide My Wp
NVD
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-36916 CRITICAL POC PATCH Act Now

The SQL injection vulnerability in the Hide My WP WordPress plugin (versions <= 6.2.3) is possible because of how the IP address is retrieved and used inside a SQL query. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress SQLi Hide My Wp
NVD
CVSS 3.1
9.8
EPSS
1.8%
EPSS 2% CVSS 7.5
HIGH POC This Week

WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Hide My Wp
NVD
EPSS 2% CVSS 9.8
CRITICAL POC PATCH Act Now

The SQL injection vulnerability in the Hide My WP WordPress plugin (versions <= 6.2.3) is possible because of how the IP address is retrieved and used inside a SQL query. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress SQLi Hide My Wp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy