PatchSiren

templatic1 CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH templatic1 CVE published 2026-07-10

CVE-2026-13347

The Hide My WP Lite plugin for WordPress, particularly versions up to and including 1.3, is vulnerable to Arbitrary File Read. This vulnerability allows unauthenticated attackers to read arbitrary files on the affected site's server, potentially exposing sensitive information. The vulnerability exists due to improper validation of user-supplied input in the elementor_assets_filter() function. Users of the [truncated]