CVE-2020-36176

Publication date

2021-01-06 14:47:34

Family

mitre

State

PUBLISHED

Description

The iThemes Security (formerly Better WP Security) plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs.