Security report

  • Vania

    (@twvania)


    5 days, 13 hours ago

    Hi,

    Could you please take a look at this Wordfence report for the plugin?

    It looks like there are multiple vulnerabilities listed there (several CVEs affecting different versions), not just a single issue.

    We have already detected that malware files were uploaded to one of our sites, which appears to be related to the vulnerabilities listed in the report.

    Thanks.

Viewing 1 replies (of 1 total)
  • Rebecca

    (@yeeaddons)

    4 days, 16 hours ago

    Hello Vania,

    These were older versions that used our own upload handler. The latest versions have been migrated to the native WordPress upload system, which has resolved these issues.

    You can find the full details in the Wordfence report. Only versions 1.3.9 and earlier are affected. All known issues have been fixed in the latest version.
    Thank you so much

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.