Report
The Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 4.1.9 via log files that are left over and not deleted. This makes it possible for unauthenticated attackers to extract potentially sensitive data including errors and information contained in the plugin's log files.
Score:5.3
Severity:Medium
Version:< 4.1.10
There is a patch available in v4.1.10 and we strongly recommend you update to this version as soon as possible.
