Forums

WordPress › Support » Plugins and Hacks

Pretty Link Lite
[resolved] SQL Injection vulnerability? (3 posts)

  1. dixonge
    Member
    Posted 10 months ago #

    6Scan plugin is telling me that the latest version of Pretty Link Lite (1.60) has an SQL Injection vulnerability. Is this accurate? If so, when will you be providing an update? I would hate to deactivate this for nothing, but I would hate to have my site hacked even more...

    http://wordpress.org/extend/plugins/pretty-link/

  2. cartpauj
    Member
    Plugin Author
    Posted 9 months ago #

    WordPress.org requires that all vulnerabilities found must be fixed. In fact they remove the plugins from their site until they are fixed. All known vulnerabilities found in the plugin have been properly secured as of 1.6.0. Can you give us more information about this vulnerability 6Scan is reporting such as how it is executed, and what file(s) are the cause?

  3. dixonge
    Member
    Posted 9 months ago #

    No, I can not, as I no longer have PrettyLink or 6Scan installed on any of my sites. Sorry! But even if I did, I would not have those details. I suggest you contact the makers of the 6Scan plugin.

Reply

You must log in to post.

About this Plugin

About this Topic

Tags