Customized Login Path Vulnerability in SiteGuard WP Plugin Prior to 1.7.7
CVE-2024-37881

Currently unrated

Key Information:

Vendor

WordPress
Status
Siteguard WP Plugin
Vendor
CVE Published:
19 June 2024

What is CVE-2024-37881?

SiteGuard WP Plugin provides a functionality to customize the path to the login page wp-login.php and implements a measure to avoid redirection from other URLs. However, SiteGuard WP Plugin versions prior to 1.7.7 missed to implement a measure to avoid redirection from wp-register.php. As a result, the customized path to the login page may be exposed.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

SiteGuard WP Plugin prior to 1.7.7

References

https://www.jp-secure.com/siteguard_wp_plugin_en/vuls/WPV...
https://plugins.trac.wordpress.org/changeset/3094238/site...
https://jvn.jp/en/jp/JVN60331535/

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.