HIGH
templatic1
CVE published 2026-07-10
CVE-2026-13347
The Hide My WP Lite plugin for WordPress, particularly versions up to and including 1.3, is vulnerable to Arbitrary File Read. This vulnerability allows unauthenticated attackers to read arbitrary files on the affected site's server, potentially exposing sensitive information. The vulnerability exists due to improper validation of user-supplied input in the elementor_assets_filter() function. Users of the [truncated]