RSS   Vulnerabilities for 'Hide my wp'   RSS

2021-11-24
 
CVE-2021-36916

CWE-89
 

 
The SQL injection vulnerability in the Hide My WP WordPress plugin (versions <= 6.2.3) is possible because of how the IP address is retrieved and used inside a SQL query. The function "hmwp_get_user_ip" tries to retrieve the IP address from multiple headers, including IP address headers that the user can spoof, such as "X-Forwarded-For." As a result, the malicious payload supplied in one of these IP address headers will be directly inserted into the SQL query, making SQL injection possible.

 
 
CVE-2021-36917

CWE-668
 

 
WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user. It is possible to retrieve a reset token which can then be used to deactivate the plugin.

 


Copyright 2022, cxsecurity.com

 

Back to Top