Title: Security issue found Last modified: November 8, 2022 --- # Security issue found * Resolved [earrame](https://wordpress.org/support/users/earrame/) * (@earrame) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/) * A security issue has been found and I am hoping that you can resolve it so we don’t have to find another to use. * “WordPress Social Media Widget Plugin <= 4.0 – Remote File Inclusion” * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fsecurity-issue-found-2%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 6 replies - 1 through 6 (of 6 total) * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16176912) * Hi [@earrame](https://wordpress.org/support/users/earrame/) , * Thanks for reaching out 🙂 * Can you please give us more insights? Is the Widget Options Plugin conflicting with the WordPress Social Media Widget Plugin? * Thank you and I’ll be waiting for the further information. * -Mej * Thread Starter [earrame](https://wordpress.org/support/users/earrame/) * (@earrame) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16179351) * I disabled the Widget Options Plugin and ran the security scan again and it came up with the same error. “WordPress Social Media Widget Plugin <= 4.0 – Remote File Inclusion” The scan is being done by ManageWP that I believe is using WP Scan. When I click the learn more link, it goes to a 404 page, so I don’t know what to make of that. * Thread Starter [earrame](https://wordpress.org/support/users/earrame/) * (@earrame) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16183453) * Here is the information about the vulnerability: [https://brightsec.com/blog/file-inclusion-vulnerabilities/#rfi](https://brightsec.com/blog/file-inclusion-vulnerabilities/#rfi) * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16184529) * Hi [@earrame](https://wordpress.org/support/users/earrame/) * Can you please delete the Widget Options Plugin and see if the same issue resurface? * Thank you, Mej * Thread Starter [earrame](https://wordpress.org/support/users/earrame/) * (@earrame) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16187493) * I completely removed the Widget Options plugin and still get the same security warning from ManageWP: * WordPress Social Media Widget Plugin <= 4.0 – Remote File Inclusion * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16187810) * Hi [@earrame](https://wordpress.org/support/users/earrame/) * Thank you for your update! In this case, the issue is not from Widget Options plugin. I would highly suggest coordinating this case to WordPress Social Media Widget Plugin authors. * Thank you, Mej Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘Security issue found’ is closed to new replies. * ![](https://ps.w.org/widget-options/assets/icon-256x256.gif?rev=2513739) * [Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets](https://wordpress.org/plugins/widget-options/) * [Frequently Asked Questions](https://wordpress.org/plugins/widget-options/#faq) * [Support Threads](https://wordpress.org/support/plugin/widget-options/) * [Active Topics](https://wordpress.org/support/plugin/widget-options/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/widget-options/unresolved/) * [Reviews](https://wordpress.org/support/plugin/widget-options/reviews/) * 10 replies * 2 participants * Last reply from: [Mej de Castro](https://wordpress.org/support/users/mej/) * Last activity: [3 years, 6 months ago](https://wordpress.org/support/topic/security-issue-found-2/#post-16187810) * Status: resolved