S4E

CVE-2021-24917 Scanner

Detects 'Protection Bypass' vulnerability in WPS Hide Login plugin for WordPress affects v. before 1.9.1.

Short Info


Level

High

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

4 weeks

Scan only one

Domain, IPv4

Toolbox

-

WPS Hide Login is a WordPress plugin that is commonly used to enhance the security of WordPress websites. Essentially, the plugin is supposed to help website owners to hide and customize their login URLs for security reasons. With the WPS Hide Login plugin, users are able to prevent brute force attacks, as well as reduce the risk of unauthorized access to their WordPress dashboard.

CVE-2021-24917 is a critical vulnerability that has been detected in the WPS Hide Login plugin before version 1.9.1. This vulnerability arises as a result of an error in the plugin's code, which makes it possible for hackers to access the secret login page through a random referer string. In simpler terms, this means that hackers can easily bypass the security measures put in place by the plugin, making it possible for them to access your website dashboard without any authorization.

When exploited, this vulnerability can lead to significant damage to your website. Some of the potential consequences of this vulnerability include data leaks, website downtime, content injection, unauthorized content modification, and the ability for hackers to take control of your website. All of these consequences can be detrimental to the success and reputation of your website and business.

At s4e.io, we provide an advanced digital asset monitoring service that helps website owners to quickly and easily identify any vulnerabilities in their websites. With our pro features, you can stay one step ahead of hackers and ensure that your website stays secure, regardless of any new vulnerabilities that may arise. Sign up today and enjoy peace of mind knowing that your website is protected.

 

REFERENCES

Get started to protecting your Free Full Security Scan