SQL Injection Vulnerability in iThemes Security Plugin for WordPress

CVE-2018-12636 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

The iThemes Security (better-wp-security) plugin before 7.0.3 for WordPress allows SQL Injection (by attackers with Admin privileges) via the logs page.

Learn more about our Wordpress Pen Testing.