• Hi team ,

    WordPress Kirki Plugin <= 6.0.13 is vulnerable to a high priority Broken Access Control . Please have a look and provide an updated release as soon as possible.

    Regards,
    Saliya

Viewing 2 replies - 1 through 2 (of 2 total)
  • JLY

    (@jose-luis-yanez)

    Yes please, provide an update

    • Risks CVSS 7.5 This vulnerability is highly dangerous and expected to become exploited. Vulnerabilities like this one are used in mass-exploit campaigns. Attackers use these to attack thousands of websites at a time, regardless of traffic size or popularity

    Hello @saliya22 @jose-luis-yanez,

    Apologies for the delayed response. We are aware of the reported issue and currently reviewing it. I will share an update as soon as we have more information or fix available. Appreciate your patience and understanding.

    Best regards,
    Nafiz | Kirki Support Team

Viewing 2 replies - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.