IThemes Security WordPress Plugin
|CVE-2018-7433||The iThemes Security plugin before 6.9.1 and iThemes Security Pro plugin before 4.8.5 for WordPress does not properly perform data escaping for the logs page.|
CVSS Base Score: 6.5
CVSS Vector: (CVSS v3: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)
Affected Products and Versions
iThemes Security plugin before 6.9.1
iThemes Security Pro plugin before version 4.8.5.
Upgrade to the latest version.