Vulnerability in N/a
CVE-2019-15823
The wps-hide-login plugin before 1.5.3 for WordPress has an action=confirmaction protection bypass.
EPSS: 0.511 (97.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
Public proof-of-concept exploits
References
- wpvulndb.com/vulnerabilities/9469 (x_refsource_MISC)
- wordpress.org/plugins/wps-hide-login/ (x_refsource_MISC)
- secupress.me/blog/wps-hide-login-v1-5-2-2-multiples-vulnerabilities/ (x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-15823?
- CVE-2019-15823 is a vulnerability in N/a. Published 2019-08-30.
- Is CVE-2019-15823 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.