Critical Problems

Viewing 5 replies - 1 through 5 (of 5 total)

  • Yes, I’m also getting the same warning from WordFence. Hopefully an update for this plugin is coming soon.

    • This reply was modified 1 year, 6 months ago by pracko.

    Is the Plugin abandonned? No timeline after two month?

    The warning I get every day from my security plugin make me nervous.

    More precisely, there seems to be exactly two security risks.

    1. WordPress OSM – OpenStreetMap plugin <= 6.01 – Contributor+ Stored XSS via Shortcode vulnerability
    2. WordPress OSM – OpenStreetMap plugin <= 6.0.1 – Cross-Site Request Forgery (CSRF) vulnerability

    According to the reports, the developer was informed but could not be reached. I hope the developer is in good health so far.

    I have tried to contact them via social network or directly on the developer’s website in the last few days. So far I have not received any feedback.

    Plugin Author MiKa

    (@photoweblog)

    Thanks for your info and feedback. We are going to invest some time to cover also these issues with an update of the plugin (WP OSM Plugin V6.1.) within November. Br, Michael

    willemb2

    (@willemb2)

    @photoweblog well, glad to see you back online, MiKa! We were afraid you had left this planet.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Critical Problems’ is closed to new replies.