WordPress reports security vulnerability

Security alert:

Wordfence found the following new issues on #website.

Alert generated at Friday 28th of October 2022 at 09:05:58 AM

See the details of these scan results on your site at: #website
Critical Problems:

* The Plugin "TablePress" has a security vulnerability.

<a href="https://www.cve.org/CVERecord?id=CVE-2019-20180" rel="noopener" target="_blank">Vulnerability Information</a>
https://www.ads-software.com/plugins/tablepress/#developers

Low Severity Problems:

Hi @alwiggins wordmatej and @slysoft,

thanks for your post, and sorry for the trouble.

I regard this report as invalid. Please see https://www.ads-software.com/support/topic/wordfence-alerts-critical-for-vulenrability/?view=all#post-16068890 and my other replies in that thread for the current status.

I’m currently working together with Wordfence to remove the underlying false entry from the global database that all this is based on.

Best wishes,
Tobias

Same-

The Plugin “TablePress” has a security vulnerability.
Type: Plugin Vulnerable- Critical

Plugin Name: TablePress
Current Plugin Version: 1.14
Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “TablePress” until a patched version is available. Get more information.(opens in new tab)
Repository URL: https://www.ads-software.com/plugins/tablepress(opens in new tab)
Vulnerability Information: https://www.cve.org/CVERecord?id=CVE-2019-20180`

hi @carlylesearchgroup,

yes, that’s the same notification. Please see https://www.ads-software.com/support/topic/wordfence-alerts-critical-for-vulenrability/?view=all#post-16068890 and the other posts in that thread for more on why I believe this to be invalid.

Best wishes,
Tobias