Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-12636 | 1 Ithemes | 1 Security | 2020-12-15 | 6.5 MEDIUM | 7.2 HIGH |
The iThemes Security (better-wp-security) plugin before 7.0.3 for WordPress allows SQL Injection (by attackers with Admin privileges) via the logs page. | |||||
CVE-2018-7433 | 1 Ithemes | 1 Security | 2018-03-16 | 5.0 MEDIUM | 7.5 HIGH |
The iThemes Security plugin before 6.9.1 for WordPress does not properly perform data escaping for the logs page. |