Wordfence Security Vulnerability

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Contributor Ketan Patel

    (@patelketan)

    Hello,

    Thanks for reaching out to us…

    We have checked the vulnerability issue link but this link does not properly define the issue and does not define the exact issue for our plugin, so we are talking to the team for the vulnerability issue.

    Thanks,

    Zade

    (@nothin7)

    In case this helps, cPanel’s WP Toolkit reports the issue as follows:

    WordPress Popup Anything plugin <= 2.7.0 – Broken Access Control vulnerability

    Thread Starter Oliver Campion

    (@domainsupport)

    It looks like this changeset should explain what the problem is. Basically it looks like you have an admin notice that is dismissed insecurely. This is the file in question for your plugin I would imagine.

    Tom Risse

    (@fuzzyraygun)

    Any update on a fix for this?

    Plugin Author Anoop Ranawat

    (@anoopranawat)

    Hello @fuzzyraygun,

    We have updated the plugin with latest version.

    Thread Starter Oliver Campion

    (@domainsupport)

    It looks like the latest version of this plugin has addressed the issue as WordFence is no longer showing an issue.

    Thank you.

    Plugin Contributor Ketan Patel

    (@patelketan)

    Hello, @fuzzyraygun, @domainsupport, @nothin7,

    We solved the security issue 2 months ago but Wordfence has not updated?database. we have talked to Wordfence?by email and Wordfence?updated the database so please check below link our all plugin perfectly working without any security issue…

    Check this link: https://surl.li/nysez

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Wordfence Security Vulnerability’ is closed to new replies.