Low 3.7
2024-06-21< 9.3.2
CVE-2022-44593
Solid Security – Password, Two Factor Authentication, and Brute Force Protection
Minimum safe version
9.3.2
Update to 9.3.2 or later to address 43 fixable vulnerabilities
Latest available9.4.7 ✓
N/A
< 9.0.1
Solid Security Basic < 9.0.1 - Unauthenticated Login Page Disclosure
N/A
2023-11-01< 9.0.1
WordPress Solid Security Plugin <= 9.0.0 is vulnerable to Sensitive Data Exposure
N/A
2023-10-31< 9.0.1
Solid Security Basic <= 9.0.0 - Unauthenticated Login Page Disclosure
Low 3.7
2023-12-29< 8.1.5
CVE-2023-28786
N/A
2012-08-20< 3.4.4
iThemes Security < 3.4.4 - Cross-Site Scripting
N/A
2014-08-01< 3.6.4
Better WP Security <= 3.6.3 - Stored Cross-Site Scripting
N/A
2014-08-01< 3.6.4
iThemes Security < 3.6.4 - Stored Cross-Site Scripting
N/A
2014-08-01< 3.5.4
Better WP Security <= 3.5.3 - Stored Cross-Site Scripting
N/A
2015-04-14< 4.6.13
iThemes Security <= 4.6.12 - Stored Cross-Site Scripting
N/A
2016-04-05< 5.3.5
iThemes Security < 5.3.5 - Authenticated Cross-Site Scripting
N/A
2016-04-21< 5.3.1
iThemes Security < 5.3.1 - Insecure Backup/Logfile Generation
N/A
2016-04-25< 5.3.6
iThemes Security <= 5.3.5 - Missing Capabilities Check
N/A
2016-09-27< 5.6.2
iThemes Security <= 5.6.1 - Sensitive Information Exposure via Diff Response
N/A
2016-10-06< 5.6.2
iThemes Security <= 5.6.1 - Stored Cross-Site Scripting
N/A
2021-04-22< 7.9.1
iThemes Security < 7.9.1 and iThemes Security Pro < 6.8.4 - Hidden Login Bypass
N/A
< 4.0.0
wpscan.com
N/A
< 3.6.4
wpscan.com
N/A
< 3.5.6
wpscan.com
N/A
< 3.4.4
wpscan.com
N/A
< 3.5.4
Better WP Security <= 3.5.3 - inc/secure.php logevent Function URL H&ling Stored XSS
N/A
< 4.6.13
iThemes Security 3.0-4.6.12 – Stored Cross-Site Scripting (XSS)
N/A
< 5.3.5
iThemes Security <= 5.3.4 - Potential Authenticated DOM Cross-Site Scripting (XSS)
N/A
< 5.3.1
iThemes Security <= 5.3.0 - Insecure Backup/Logfile Generation
N/A
< 5.3.6
iThemes Security <= 5.3.5 - Lack of Capability Check
N/A
< 5.6.2
iThemes Security <= 5.6.1 - Unauthenticated Stored Cross-Site Scripting (XSS)
N/A
< 7.9.1
iThemes Security Free (< 7.9.1) & Pro (< 6.8.4) - Hide Backend Bypass
N/A
2015-05-15< 4.0.0
WordPress Better WP Security Plugin <= 3.6.3 - XSS
N/A
2015-05-15< 3.5.6
WordPress Better WP Security Plugin <= 3.5.5 - Stored XSS
N/A
2015-05-15< 3.6.4
WordPress Better WP Security Plugin <= 3.6.3 - Stored XSS
N/A
2015-05-15< 3.4.4
WordPress Better WP Security Plugin <= 3.4.3 - Multiple XSS
N/A
2013-08-02< 3.5.4
WordPress Better WP Security Plugin - Stored XSS
N/A
2015-10-18< 4.6.13
WordPress iThemes Security Plugin <= 4.6.12 - Stored XSS
N/A
2016-04-05< 5.3.5
WordPress iThemes Security Plugin <= 5.3.4 - DOM XSS
N/A
2016-04-22< 5.3.1
WordPress iThemes Security Plugin <= 5.3.0 - Bypass
N/A
2016-04-25< 5.3.6
WordPress iThemes Security Plugin <= 5.3.5 - Bypass
N/A
2016-10-06< 5.6.2
WordPress iThemes Security Plugin <= 5.6.1 - Stored XSS
N/A
2021-04-21< 7.9.1
WordPress iThemes Security plugin <= 7.9.0 - Hide Backend Bypass vulnerability
N/A
2012-08-13< 3.2.5
CVE-2012-4264
N/A
2012-08-13< 3.2.5
CVE-2012-4263
High 7.5
2018-03-05< 6.9.1
WordPress iThemes Security <=6.9.0 - Cross-Site Scripting (XSS) vulnerability
High 7.2
2018-06-25< 7.0.3
WordPress iThemes Security plugin <= 7.0.2 - Authenticated SQL Injection (SQLi) vulnerability
High 7.5
2021-01-06< 7.7.0
CVE-2020-36176