Wordfence Reporting a Vulneravilty is Overblown

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator jordesign

    (@jordesign)

    Hi @flexer – I see there is an?open issue for this on Gutenberg’s Github.

    To be honest, It doesn’t look like this is a serious issue, since it will only happen if you manually add a malicious SVG image via a third-party URL to the site.

    Thread Starter Flexer

    (@flexer)

    Yes @jordesign I agree, but the issue I see is that millions of WordFence free and paid are getting a message that there is a “Critical Problem” that The Plugin “Gutenberg” has a security vulnerability. This message is repeated after every update to Gutenberg. This is a bad look IMO. I have seen threads on Reddit and elsewhere that allude to this.

    Is there anyone that can connect with WordFence and have a dialogue with them about this?


    Hey @flexer! Just realized this had fallen through the cracks.

    It looks like Wordfence replied to the above-mentioned GitHub issue saying that they have removed this entry from their database.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Wordfence Reporting a Vulneravilty is Overblown’ is closed to new replies.