WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to Force HTTPS, SSL Score, CVE-2023-7046

CVE, Research URL: CVE-2023-7046
Home page URL: Security reports for WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to Force HTTPS, SSL Score
Application: WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to Force HTTPS, SSL Score
Published on: Apr 10, 2024
Research Description: The WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to Force HTTPS, SSL Score plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.0 via exposed Private key files. This makes it possible for unauthenticated attackers to extract sensitive data including TLS Certificate Private Keys
Affected versions: max 7.1.0.
Status: vulnerable

WP Encryption &#8211; One Click Free SSL Certificate &amp; SSL / HTTPS Redirect to Force HTTPS, SSL Score, CVE-2023-7046