iThemes Security Pro 8.4.2

-Enhancement: Add mitigation for the WordPress Attachment File Traversal and Deletion vulnerability.
-Tweak: Display the subject line of the Two-Factor Email when logging in.
-Tweak: Fire a WordPress action whenever settings are updated.
-Bug Fix: Improved input sanitization on the logs page to prevent triggering warnings.
-Bug Fix: Don't track post status transitions to the identical post status.

-Security Fix: Fixed SQL injection vulnerability in the logs page. Note: Admin privileges are required to exploit this vulnerability. Thanks to Çlirim Emini, Penetration Tester at sentry.co.com, for reporting this vulnerability.
-Tweak: Recommend Strong Passwords and Refuse Compromised Passwords in the Grade Report.
-Bug Fix: Provide default values for enabled requirements.

Bug Fix: Accessing password requirement settings would not resolve properly in some instances.