CVE-2023-5089

MEDIUM NUCLEI

Defender Security WP <4.1.0 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-5089. PoCs published by Cappricio-Securities. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a Python-based scanner for detecting CVE-2023-5089, a WordPress Login Bypass vulnerability in the Defender Security Plugin. The tool checks for vulnerable endpoints and integrates with Telegram for notifications.

Description

The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the login page, even when the hide login page functionality of the plugin is enabled.

Exploits (1)

nomisec SCANNER 1 stars

by Cappricio-Securities · poc

https://github.com/Cappricio-Securities/CVE-2023-5089

View Code ZIP pw:eip

This repository contains a Python-based scanner for detecting CVE-2023-5089, a WordPress Login Bypass vulnerability in the Defender Security Plugin. The tool checks for vulnerable endpoints and integrates with Telegram for notifications.

Classification

Scanner 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: WordPress Defender Security Plugin

No auth needed

Prerequisites: Target URL or list of URLs · Python 3 environment

MITRE ATT&CK

T1110 - Brute Force

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page)

MEDIUMVERIFIEDby jpg0mez

Shodan: http.html:/wp-content/plugins/defender-security/

FOFA: body=/wp-content/plugins/defender-security/

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://www.sprocketsecurity.com/resources/discovering-wp-admin-urls-in-wordpress-with-gravityforms

Exploit, Third Party Advisory exploit vdb-entry technical-description

https://wpscan.com/vulnerability/2b547488-187b-44bc-a57d-f876a7d4c87d

Scores

CVSS v3 5.3

EPSS 0.0223

EPSS Percentile 80.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

Status published

Products (1)

wpmudev/defender_security < 4.1.0

Published Oct 16, 2023

Tracked Since Feb 18, 2026