Update the WordPress Hide My WP premium plugin to the latest available version (at least 6.2.4).
Dave Jong (Patchstack) discovered and reported this SQL Injection vulnerability in WordPress Hide My WP Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information and creating new administrator accounts. This vulnerability has been fixed in version 6.2.4.
Unauthenticated SQLi vulnerability
11.01.2023
Unauthenticated Plugin Deactivation vulnerability
24.11.2021
Cross Site Scripting
13.08.2015
Cross Site Scripting
27.07.2015