Update the WordPress Hide My WP premium plugin to the latest available version (at least 6.2.4).
Dave Jong (Patchstack) discovered and reported this SQL Injection vulnerability in WordPress Hide My WP Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information and creating new administrator accounts. This vulnerability has been fixed in version 6.2.4.
Unauthenticated SQLi vulnerability
7.5
11.01.2023
Unauthenticated Plugin Deactivation vulnerability
6.5
24.11.2021
Cross Site Scripting
6.1
13.08.2015
Cross Site Scripting
6.1
27.07.2015
Successfully submit vulnerabilities and receive an invite to our Alliance platform.
Learn more
Close
Hide My WP
LinkedIn
Facebook
Twitter
Join Discord
