CVE-2023-5089

MEDIUM NUCLEI

Defender Security WP <4.1.0 - Auth Bypass

Title source: llm

Description

The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the login page, even when the hide login page functionality of the plugin is enabled.

Exploits (1)

nomisec SCANNER 1 stars

by Cappricio-Securities · poc

https://github.com/Cappricio-Securities/CVE-2023-5089

View Code ZIP pw:eip

Nuclei Templates (1)

Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page)

MEDIUMVERIFIEDby jpg0mez

Shodan: http.html:/wp-content/plugins/defender-security/

FOFA: body=/wp-content/plugins/defender-security/

References (2)

[Exploit, Third Party Advisory] https://wpscan.com/vulnerability/2b547488-187b-44bc-a57d-f876a7d4c87d

[Exploit, Third Party Advisory] https://www.sprocketsecurity.com/resources/discovering-wp-admin-urls-in-wordpress-with-gravityforms

Scores

CVSS v3 5.3

EPSS 0.8312

EPSS Percentile 99.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

Status published

Products (1)

wpmudev/defender_security < 4.1.0

Published Oct 16, 2023

Tracked Since Feb 18, 2026