ETA on security fix?

Viewing 5 replies - 1 through 5 (of 5 total)

  • Same

    Category:PLUGIN

    Versions-Affected:<= 3.1.2

    Type:Cross Site Request Forgery

    Severity:MEDIUM

    Description:Abdi Pranata discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress MailMunch – Grow your Email List Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has not been known to be fixed yet.

    Is the plugin abandoned?

    Plugin Contributor Liz Gannes

    (@lizgannes)

    Hi @bluesix, Apologies for the inconvenience and the delayed response. This issue has been escalated to our engineering team and a fix will be pushed very soon.

    It has been a month and all your plugins seem to have security issues. …

    Plugin Contributor Liz Gannes

    (@lizgannes)

    Hi @espressivo, This issue has been fixed for all the plugins in question. Please update the plugin and confirm if this issue is resolved. If the issue persists, please reach out to us at “[email protected]

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘ETA on security fix?’ is closed to new replies.