Support » Plugin: WP-PageNavi » Attacks on WP-Navi in July 2017

  • Resolved inge12

    (@inge12)


    In its July report, Wordfence reported (see URL) that there were 276883 attacks on Page-Navi.

    We looked into the details of the biggest mover on the list, ‘wp-pagenavi’, which moved up 38 spots to number 11. The surge in attacks are attempting to exploit the TimThumb vulnerability we discussed in the theme section. We couldn’t find reference to the plugin including TimThumb, but given that the TimThumb vulnerability in question is over 5 years old now it would be difficult to say for sure.

    I have deactivated the plugin for now but don’t like the resulting narrowed navi bar.

    Please check into this to ensure that page-navi is not vulnerable to attack.

    Thank you for a great plugin!

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
Viewing 5 replies - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.