Support » Plugin: Lanoba Social Plugin » [Plugin: Lanoba Social Plugin] XSS vulnerabilities

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Lanoba

    (@lanoba)

    Thank you Henri for reporting this to us.

    While WordPress does have a cross site scripting problem (XSS) where not all user input is sanitized, if any of that unsanitized user input is redirected to the screen or browser, an attacker would be able to execute malicious scripts. However, Lanoba’s plug in does sanitize user input, and because that input is never sent to the browser, an attacker has no way of executing script or code on a user’s behalf.

    Thank you again for your input, we hope you found this information to be helpful.

    Lanoba Support

    Thread Starter henrisalo

    (@henrisalo)

    I double-checked this and it is indeed false-positive. Thank you for fast reply. It seems that the person who originally reported this has made several other false-positive reports.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘[Plugin: Lanoba Social Plugin] XSS vulnerabilities’ is closed to new replies.