The iThemes Security plugin before 6.9.1 for WordPress does not properly perform data escaping for the logs page.
The product writes sensitive information to a log file.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Security | Ithemes | * | 6.9.0 (including) |