CVE-2021-24917

HIGH NUCLEI

WPS Hide Login <1.9.1 - Info Disclosure

Title source: llm

Description

The WPS Hide Login WordPress plugin before 1.9.1 has a bug which allows to get the secret login page by setting a random referer string and making a request to /wp-admin/options.php as an unauthenticated user.

Exploits (3)

nomisec SCANNER 3 stars

by Cappricio-Securities · poc

https://github.com/Cappricio-Securities/CVE-2021-24917

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by buildwithlian · poc

https://github.com/buildwithlian/CVE-2021-24917

View Code ZIP pw:eip

metasploit WORKING POC

by thalakus, h00die · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_wps_hide_login_revealer.rb

View Code ZIP pw:eip

Nuclei Templates (1)

WordPress WPS Hide Login <1.9.1 - Information Disclosure

HIGHVERIFIEDby akincibor

References (2)

[Third Party Advisory] https://wordpress.org/support/topic/bypass-security-issue/

[Exploit, Third Party Advisory] https://wpscan.com/vulnerability/15bb711a-7d70-4891-b7a2-c473e3e8b375

Scores

CVSS v3 7.5

EPSS 0.7637

EPSS Percentile 98.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-863

Status published

Products (1)

wpserveur/wps_hide_login < 1.9.1

Published Dec 06, 2021

Tracked Since Feb 18, 2026