Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ithemes security vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-36176
The iThemes Security (formerly Better WP Security) plugin prior to 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs.
Ithemes Ithemes Security
5
CVSSv2
CVE-2018-7433
The iThemes Security plugin prior to 6.9.1 for WordPress does not properly perform data escaping for the logs page.
Ithemes Security
6.5
CVSSv2
CVE-2018-12636
The iThemes Security (better-wp-security) plugin prior to 7.0.3 for WordPress allows SQL Injection (by attackers with Admin privileges) via the logs page.
Ithemes Security
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started