[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fykOx7ZzJaq9fAFiWHwL5_420vIgIlRmqIxg2Bc4g8tY":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2024-6420","hide-my-wp-ghost-security-firewall-login-page-disclosure","Hide My WP Ghost – Security & Firewall \u003C= 5.2.01 - Login Page Disclosure","The Hide My WP Ghost – Security & Firewall plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 5.2.01. This is due to the plugin not prevent redirects to the login page when gravity forms is installed. This makes it possible for unauthenticated attackers to find the login page when it has been hidden.","hide-my-wp",null,"\u003C=5.2.01","5.2.02","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2024-07-02 00:00:00","2024-08-09 21:06:20",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8445f318-ef4e-45c5-be9b-6080833c3bb6?source=api-prod",39]