The plugin has a vulnerability

  • Resolved Esmertec

    (@esmertec)


    1 year, 8 months ago

    The problem is that the plugin has a serious vulnerability, it is as follows. When the plugin is activated, and I go to the site’s control panel, it is completely blocked, preventing me from going anywhere, while propagandizing Ukrainian music is turned on. If you log in from another browser, you can disable the player plugin for a certain time, then this exploit ceases to work in all browsers. Watch video confirmation below:

Viewing 1 replies (of 1 total)
  • Plugin Author Prince

    (@princeahmed)

    Dear @esmertec
    We sincerely appreciate you bringing this issue to our attention and we’d like to extend our apologies for any inconvenience you might have experienced.

    We identified the problem originating from a third-party library, sweetalert2, which was causing some disruptions on Russian websites.

    We’re pleased to inform you that we have rectified this problem and released an updated version, v2.0.6. We highly recommend updating the plugin to this latest version and checking for improvements.

    Should you encounter any further concerns or have any questions, please don’t hesitate to reach out. We value your feedback and support.

Viewing 1 replies (of 1 total)
  • The topic ‘The plugin has a vulnerability’ is closed to new replies.