🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

WPS Hide Login

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > WPS Hide Login

Information

Software Type	Plugin
Software Slug	wps-hide-login (view on wordpress.org)
Software Status	Active
Software Author	tabrisrp
Software Downloads	20,790,384
Software Active Installs	1,000,000
Software Record Last Updated	May 8, 2024

8 Vulnerabilities

WPS Hide Login <= 1.9.11 - Hidden Login Page Location Disclosure

3.7

CVE-2023-49748

Jan 10, 2024

Researcher: Naveen Muthusamy

WPS Hide Login <= 1.9.0 - Hidden Login Page Location Disclosure

5.3

CVE-2021-24917

Oct 27, 2021

Researcher: Daniel Ruf

WPS Hide Login <= 1.5.4.2 - Hidden Login Page Location Disclosure

5.3

CVE-2020-36710

Jan 27, 2020

Researcher: Jerome Bruandet

WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'action=rp'

5.3

CVE-2019-15825

Jul 23, 2019

Researcher: Julio Potier

WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via Referer Header

5.3

CVE-2019-15826

Jul 23, 2019

Researcher: Julio Potier

WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'action=confirmaction'

5.3

CVE-2019-15823

Jul 23, 2019

Researcher: Julio Potier

WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'adminhash'

5.3

CVE-2019-15824

Jul 22, 2019

Researchers:

WPS Hide Login <= 1.0 - Cross-Site Request Forgery

8.8

CVE-2015-9498

Apr 27, 2015

Researcher: pvdl

Title	CVE ID	CVSS	Researchers	Date
WPS Hide Login <= 1.9.11 - Hidden Login Page Location Disclosure	CVE-2023-49748	3.7	Naveen Muthusamy	January 10, 2024
WPS Hide Login <= 1.9.0 - Hidden Login Page Location Disclosure	CVE-2021-24917	5.3	Daniel Ruf	October 27, 2021
WPS Hide Login <= 1.5.4.2 - Hidden Login Page Location Disclosure	CVE-2020-36710	5.3	Jerome Bruandet	January 27, 2020
WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'action=rp'	CVE-2019-15825	5.3	Julio Potier	July 23, 2019
WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via Referer Header	CVE-2019-15826	5.3	Julio Potier	July 23, 2019
WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'action=confirmaction'	CVE-2019-15823	5.3	Julio Potier	July 23, 2019
WPS Hide Login <= 1.5.2.2 - Login Page Disclosure via 'adminhash'	CVE-2019-15824	5.3		July 22, 2019
WPS Hide Login <= 1.0 - Cross-Site Request Forgery	CVE-2015-9498	8.8	pvdl	April 27, 2015

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation