Security Advisory

CVE-2020-36176

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-06 14:47:34

Last updated 2024-08-04 17:23:09

Assigner mitre

State PUBLISHED

Description

The iThemes Security (formerly Better WP Security) plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs.

← Browse all CVEs View on cve.org ↗