Security Issues | WordPress.org

Resolved user256
(@user256)

10 years, 5 months ago

wpscan is still flagging this as an potential issue – any update on this? Should i be worried

http://ceriksen.com/2013/01/12/wordpress-floating-social-media-link-plugins-remote-file-inclusion/

http://wordpress.org/plugins/floating-social-media-links/

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author Nick Halsey
(@celloexpressions)

10 years, 5 months ago

That issue was fixed in version 1.4.3, which was released on December 11th, 2012 (almost a year ago). And, in fact, the file where the vulnerability existed is no longer present at all. The feature that it enabled will be removed in the next major version of FSML as well.

(the solution on the advisory is to update to version 1.4.3, but it is not displayed prominently)

Thread Starter user256
(@user256)

10 years, 5 months ago

Thanks for the clarification – I did spot that and thought it was most likely resolved but was a little alarmed it was still being flagged despite the version number!

Better safe than sorry 🙂 Thanks a lot I’m glad to hear i don’t need to go off in search of another because it’s an epic plugin!

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Security Issues’ is closed to new replies.

In: Plugins
2 replies
2 participants
Last reply from: user256
Last activity: 10 years, 5 months ago
Status: resolved