cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-1595,https://securityvulnerability.io/vulnerability/CVE-2022-1595,HC Custom WP-Admin URL <= 1.4 - Unauthenticated Secret URL Disclosure,The HC Custom WP-Admin URL WordPress plugin through 1.4 leaks the secret login URL when sending a specific crafted request,Wordpress,Hc Custom WP-admin Url,5.3,MEDIUM,0.0014900000533089042,false,,false,false,false,,false,false,2022-06-13T12:42:03.000Z,0
CVE-2022-1594,https://securityvulnerability.io/vulnerability/CVE-2022-1594,HC Custom WP-Admin URL <= 1.4 - Arbitrary Settings Update via CSRF,"The HC Custom WP-Admin URL WordPress plugin through 1.4 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, allowing them to change the login URL",Wordpress,Hc Custom WP-admin Url,4.3,MEDIUM,0.0006099999882280827,false,,false,false,false,,false,false,2022-06-13T12:42:00.000Z,0