Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Hide My WP Ghost – Security Plugin 5.0.18

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 8, 2023

The Hide My WP Ghost – Security Plugin for WordPress has a security vulnerability in versions up to 5.0.18. This means that attackers can use a different IP address than their own to access the website and bypass settings that may have blocked them from logging in. This happens because there are not enough restrictions on the IP Address information that is used for request logging and login restrictions.

Detected in:

Hide My WP Ghost – Security & Firewall fixed vulnerable versions:
Hide My WP Ghost – Security Plugin fixed vulnerable versions: >= * <= 5.0.18
WP Ghost – Security & Firewall fixed vulnerable versions:
WP Ghost (Hide My WP Ghost) – Security & Firewall fixed vulnerable versions:
WP Ghost (short for Hide My WP Ghost) – Security & Firewall fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.