Hc Custom Wp-Admin Url Project Hc Custom Wp-Admin Url vulnerabilities
2 known vulnerabilities affecting hc_custom_wp-admin_url_project/hc_custom_wp-admin_url.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-1595P3MEDIUMCVSS 5.3PoC≤ 1.42022-06-13
CVE-2022-1595 [MEDIUM] CWE-200 CVE-2022-1595: The HC Custom WP-Admin URL WordPress plugin through 1.4 leaks the secret login URL when sending a sp
The HC Custom WP-Admin URL WordPress plugin through 1.4 leaks the secret login URL when sending a specific crafted request
nvd
CVE-2022-1594P4MEDIUMCVSS 4.3≤ 1.42022-06-13
CVE-2022-1594 [MEDIUM] CWE-352 CVE-2022-1594: The HC Custom WP-Admin URL WordPress plugin through 1.4 does not have CSRF check in place when updat
The HC Custom WP-Admin URL WordPress plugin through 1.4 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, allowing them to change the login URL
nvd