[Plugin: Pretty Link Lite] SQL Injection vulnerability? | WordPress.org

Resolved dixonge
(@dixonge)

11 years, 9 months ago

6Scan plugin is telling me that the latest version of Pretty Link Lite (1.60) has an SQL Injection vulnerability. Is this accurate? If so, when will you be providing an update? I would hate to deactivate this for nothing, but I would hate to have my site hacked even more…

http://wordpress.org/extend/plugins/pretty-link/

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author cartpauj
(@cartpauj)

11 years, 8 months ago

WordPress.org requires that all vulnerabilities found must be fixed. In fact they remove the plugins from their site until they are fixed. All known vulnerabilities found in the plugin have been properly secured as of 1.6.0. Can you give us more information about this vulnerability 6Scan is reporting such as how it is executed, and what file(s) are the cause?

Thread Starter dixonge
(@dixonge)

11 years, 8 months ago

No, I can not, as I no longer have PrettyLink or 6Scan installed on any of my sites. Sorry! But even if I did, I would not have those details. I suggest you contact the makers of the 6Scan plugin.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘[Plugin: Pretty Link Lite] SQL Injection vulnerability?’ is closed to new replies.

Tags

In: Plugins
2 replies
2 participants
Last reply from: dixonge
Last activity: 11 years, 8 months ago
Status: resolved