What is GHSA-873w-p97p-f26x?

GHSA-873w-p97p-f26x is a security advisory published by GitHub Security Advisories with High severity. Insertion of Sensitive Information Into Sent Data vulnerability in Logtivity Activity Logs...

Which CVE IDs does GHSA-873w-p97p-f26x cover?

GHSA-873w-p97p-f26x covers the following CVE IDs: CVE-2026-42673. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-873w-p97p-f26x?

GHSA-873w-p97p-f26x has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-873w-p97p-f26xHighCVSS 7.5

Insertion of Sensitive Information Into Sent Data vulnerability in Logtivity Activity Logs...

Vendor

GitHub Security Advisories

Published

June 1, 2026

Last Modified

June 1, 2026

🔗 CVE IDs covered (1)

CVE-2026-42673 →

📋 Description

Insertion of Sensitive Information Into Sent Data vulnerability in Logtivity Activity Logs Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity allows Retrieve Embedded Sensitive Data.

This issue affects Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity: from n/a through 3.3.6.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-42673
https://patchstack.com/database/wordpress/plugin/logtivity/vulnerability/wordpress-activity-logs-user-activity-tracking-multisite-activity-log-from-logtivity-plugin-3-3-6-sensitive-data-exposure-vulnerability?_s_id=cve
https://github.com/advisories/GHSA-873w-p97p-f26x