ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WP Security Audit Log plugin <=3.1.1 - Sensitive Information Disclosure

Product
WP Security Audit Log
Description
Sensitive Information Disclosure found in WordPress WP Security Audit Log plugin (versions <=3.1.1). Failed login log files indexable by Google.
Solution
Update the WordPress WP Security Audit Log plugin to the latest available version (at least 3.1.2).
Classification
Type Information Disclosure
OWASP Top 10 A6: Sensitive Data Exposure
References
Plugin changelog
CVE
Name CVE-2018-8719
Versions
Affected In <=3.1.1
Fixed In 3.1.2
Disclosure date
2018-04-05
Submitter
ThreatPress