VYPR

Better Wp Security

by WordPress

CVEs (3)

  • CVE-2018-12636HigJun 22, 2018
    risk 0.52cvss 7.2epss 0.30

    The iThemes Security (better-wp-security) plugin before 7.0.3 for WordPress allows SQL Injection (by attackers with Admin privileges) via the logs page.

  • CVE-2012-4264Aug 13, 2012
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "server variables," a different vulnerability…

  • CVE-2012-4263Aug 13, 2012
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in inc/admin/content.php in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the HTTP_USER_AGENT header.