Plugin Vulnerabilities Protection (up to date?)

  • Resolved jhnpldng

    (@jhnpldng)


    9 years, 8 months ago

    Receiving a red flag regarding Ultimate Member plugin about XSS this morning. Went to their support forum and told them about it. They replied that the issue has been fixed and their changelog shows it having been addressed a month ago but simple firewall includes the latest version of ultimate member in the red flag warning. So which is right? Is it still an issue and if not, why am I getting a warning message in my admin area. XSS vulnerability is a fairly bug concern as is site security in general so getting wrong messages is not good and things should be up to date.

    So either your plugin is giving me a red flag for something that was fixed a month ago or they’re lying about having fixed it. Which is it?

    https://www.ads-software.com/plugins/wp-simple-firewall/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter jhnpldng

    (@jhnpldng)

    UM updated their plugin this morning which fixed the red flag. This was after they told me things were already fixed so they basically lied to me or were mistaken.

    Will be keeping wp simple firewall;)

    Plugin Author Paul

    (@paultgoodchild)

    Hey,

    I’m definitely interested if the plugin is falsely reporting, but it seems as if I’m in the clear this time ??

    The data from this plugin isn’t collated by is us – please take a look at the change log for more information on this to understand where we get it from.

    Thanks.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Plugin Vulnerabilities Protection (up to date?)’ is closed to new replies.