3 matches found
CVE-2020-36176
The iThemes Security formerly Better WP Security plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs...
CVE-2020-36176
creationtimestamp| type| source ---|---|--- 2021-01-06 18:39:26+00:00| seen| https://t.me/cibsecurity/21672...
CVE-2020-36176
The CVE-2020-36176 affects the WordPress iThemes Security (formerly Better WP Security) plugin prior to version 7.7.0. The root issue is that the plugin does not enforce a new-password requirement for an existing account until the second login occurs, potentially leaving an account with a weak pa...