Solid Security reports a Vulnerability even for 0.10.3

Viewing 4 replies - 1 through 4 (of 4 total)

  • I’m getting that too

    Getting alerts still for the vulnerability in version 0.10.3. Please update the plugin with a patch. Thanks for the great plugin.

    Plugin Author yonifre

    (@yonifre)

    Hey everyone here!
    The vulnerability is It is about the fact that a user of the site can bypass the IP check that the plugin does, and thus succeed in sending spam, even if that country is marked as “blocked”.
    I don’t see this as a problem, of course, you can bypass and still send spam in all sorts of ways.
    I have explained the situation to patchstack.com, who reported the vulnerability, and I hope they will remove it soon.
    Thanks for your trust

    Plugin Author yonifre

    (@yonifre)

    They removed it in 0.10.4
    You can update

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Solid Security reports a Vulnerability even for 0.10.3’ is closed to new replies.