Cross-Site Scripting Vulnerability – WARNING

Viewing 4 replies - 1 through 4 (of 4 total)

  • I think this is what’s happening to my site:

    https://dvdcartoonz.com/checkout

    Says that it’s getting redirected to a site called “safetykidz.com”

    Any advice as to how I can get this problem fixed would be greatly appreciated!

    Thanks for this info, immediately changed it.

    Plugin Contributor Gerhard Potgieter

    (@kloon)

    Just a heads up, the issue is only inside the admin panel and unless the person has access to your admin area they cannot trigger the XSS to inject code. It has been patched in 2.0.18 which will go out soon.

    Version 2.0.18 has been released and I advise everyone to download at their earliest convenience. Important side note though, as Gerhard also mentioned, this was a very minor security issue and very hard to exploit.

    Still, all security issues will off course be patched, so thanks for all the reports.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Cross-Site Scripting Vulnerability – WARNING’ is closed to new replies.