cleantalk
Vulnerabilities and Security Researches

All-In-One Security (AIOS) – Security and Firewall, f57c9765198dd8a6cc7f39cac9914dece351c437

CVE, Research URL

f57c9765198dd8a6cc7f39cac9914dece351c437

Home page URL

Security reports for All-In-One Security (AIOS) – Security and Firewall

Application

All-In-One Security (AIOS) – Security and Firewall

Published on
Jul 11, 2023
Research Description
All-In-One Security (AIOS) – Security and Firewall [all-in-one-wp-security-and-firewall] < 5.2.0 All In One WP Security 5.1.9 - Plaintext Storage of Credentials The All In One WP Security plugin for WordPress is vulnerable to sensitive information disclosure in version 5.1.9. This is due to insufficient encryption on credentials stored in database logs. This makes it possible for attackers to retrieve the username and password of users that have logged into the site, granted they obtain access to the database which would require successfully exploiting another vulnerability such as SQL injection or use of weak passwords.
Affected versions
max 5.2.0.
Status
vulnerable
Previous vulnerability researches
My auctions allegro (CVE-2025-27009) , Apr 16, 2025
My auctions allegro (CVE-2024-11707) , Dec 06, 2024
My auctions allegro (CVE-2025-68567) , Jan 10, 2026
My auctions allegro (CVE-2025-68566) , Jan 10, 2026
My auctions allegro (CVE-2025-12851) , Dec 10, 2025
New vulnerability
Business Directory Plugin &#8211; Easy Listing Directories for WordPress (03deb7a1bbdcb602268798c76ed73ded25caa143) , Jun 16, 2026
Restaurant &amp; Cafe Addon for Elementor (5bceb74e-6c16-4b62-9194-429edde484bc) , Jun 16, 2026
Restaurant &amp; Cafe Addon for Elementor (ef893356-c83f-472d-bbed-3ca67fb684d9) , Jun 16, 2026
Restaurant &amp; Cafe Addon for Elementor (f3d59459193c15db9b30cf501e6999ea8588d35f) , Jun 16, 2026
Restaurant &amp; Cafe Addon for Elementor (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026