The All In One WP Security plugin for WordPress is vulnerable to a security issue in version 5.1.9. This means that someone with access to the website’s database can view sensitive information like usernames and passwords. To gain access to the database, an attacker would need to exploit another vulnerability such as using a weak password or a technique called “SQL injection”.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
