elFinder Plugin Vulnerability … Version issue?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfpeter

    (@wfpeter)

    9 months, 1 week ago

    Hi @dlmsontag,

    This was coming up because the free version is 8.0.2 as you rightly mention, and the issue was intended for the pro version <=8.4.2. The Threat Intelligence team are currently working on why the free version is showing as vulnerable, because we’re getting the correct result for 8.4.3 being patched on the pro version. Sometimes this can occur because of duplicate plugin slugs, but that doesn’t seem to be the case here.

    Thanks for your report,
    Peter.

    • This reply was modified 9 months, 1 week ago by wfpeter. Reason: Modified as the team are still looking into some potential issues
    Plugin Support wfpeter

    (@wfpeter)

    9 months, 1 week ago

    Hi @dlmsontag,

    The team have been working hard and the result should disappear from any sites with this scan result after running a new scan. To run a new scan to confirm, simply visit Wordfence > Scan and hit the blue “START NEW SCAN” button.

    Thanks again,
    Peter.

    Thread Starter dlmsontag

    (@dlmsontag)

    9 months, 1 week ago

    Thanks for getting back to me. I tried a rescan but it still came back as a vulnerability – this time it was ‘critical’. WordFence recommended plugin removal, which I did. I don’t need it at the moment anyway, so I’ll worry about it more when I need files access (or just access direct through server). Maybe it won’t be an issue by then. Have a great day everyone!

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘elFinder Plugin Vulnerability … Version issue?’ is closed to new replies.