🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Wordfence Intelligence > Vulnerability Researchers > Naveen Muthusamy

Naveen Muthusamy

265

All Time Ranking

All Time Discoveries

7 Vulnerabilities

WPS Hide Login <= 1.9.11 - Hidden Login Page Location Disclosure

3.7

CVE-2023-49748

Jan 10, 2024

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Ultimate Dashboard <= 3.7.10 - Login Page Disclosure on Multi-site

5.3

CVE-2023-49822

Dec 5, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Hide login page <= 1.1.7 - Login Page Disclosure

5.3

CVE-2023-48335

Nov 23, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

LWS Hide Login <= 2.1.8 - Protection Mechanism Bypass

5.3

CVE-2023-47818

Nov 16, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Defender Security <= 4.2.0 - Masked Login Area Security Feature Bypass

5.3

CVE-2023-47189

Nov 3, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Solid Security Basic <= 9.0.0 - Unauthenticated Login Page Disclosure

5.3

CVE ID Unknown

Oct 31, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

All In One WP Security <= 5.2.4 - Protection Bypass of Renamed Login Page via URL Encoding

5.3

CVE-2023-52147

Oct 25, 2023

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Title	CVE ID	CVSS	Vector	Date
WPS Hide Login <= 1.9.11 - Hidden Login Page Location Disclosure	CVE-2023-49748	3.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N	January 10, 2024
Ultimate Dashboard <= 3.7.10 - Login Page Disclosure on Multi-site	CVE-2023-49822	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	December 5, 2023
Hide login page <= 1.1.7 - Login Page Disclosure	CVE-2023-48335	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	November 23, 2023
LWS Hide Login <= 2.1.8 - Protection Mechanism Bypass	CVE-2023-47818	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	November 16, 2023
Defender Security <= 4.2.0 - Masked Login Area Security Feature Bypass	CVE-2023-47189	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	November 3, 2023
Solid Security Basic <= 9.0.0 - Unauthenticated Login Page Disclosure		5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	October 31, 2023
All In One WP Security <= 5.2.4 - Protection Bypass of Renamed Login Page via URL Encoding	CVE-2023-52147	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	October 25, 2023

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation