Update the WordPress Hide My WP premium plugin to the latest available version (at least 6.2.4).
Dave Jong (Patchstack) discovered and reported this SQL Injection vulnerability in WordPress Hide My WP Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information. This vulnerability has been fixed in version 6.2.4.