High security risk

  • davidebabylonia

    (@davidebabylonia)


    7 years, 9 months ago

    Hello, I was checking all my installed plugins with “Plugin Inspector” plugin and I noticed that Visitor Maps and Who’s Online triggers several unsafe warnings with high security risk, please try to install it and, on its setting under Plugins > Plugin Inspector, locate and click “Check it” on Visitor Maps and Who’s Online to see them. It shows some deprecated functions as well.

    Same with Visitor Maps Geolocation Addon v. 1.0

Viewing 2 replies - 1 through 2 (of 2 total)
  • mbrsolution

    (@mbrsolution)

    7 years, 9 months ago

    Hi, thank you for reporting this finding. The plugin developer will investigate further these issues.

    Regards

    Mike Challis

    (@mikechallis)

    7 years, 6 months ago

    Working on it today, although the high risk item is a function that makes a system call, it is a way to get host by IP address without timeout problems. The code is OK, there is no vulnerability.
    If I remove that code, the IP lookups will timeout sometimes causing a white screen on your site and fail to load error.

    I am not removing it.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘High security risk’ is closed to new replies.