Title: Security Risk
Last modified: September 23, 2024

---

# Security Risk

 *  Resolved [jpanders](https://wordpress.org/support/users/jpanders/)
 * (@jpanders)
 * [1 year, 8 months ago](https://wordpress.org/support/topic/security-risk-27/)
 * When looking at installed plugins via our WP Engine dashboard, **Hustle is identified
   as a Security Risk**, with the below details. Please provide an update when this
   vulnerability will be patched, or whether this issue will persist.
   **Security
   risk:** xss. Data from an attacker could be interpreted as code by site visitors’
   web browsers. The ability to run code in another site visitors’ browser can be
   abused to steal information, or modify site configuration.**Severity:** low**
   Fixed in:** no fix yet

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Support [Laura – WPMU DEV Support](https://wordpress.org/support/users/wpmudev-support8/)
 * (@wpmudev-support8)
 * [1 year, 8 months ago](https://wordpress.org/support/topic/security-risk-27/#post-18032885)
 * Hi [@jpanders](https://wordpress.org/support/users/jpanders/)
 * I hope you’re well today and thank you for reporting it.
 * I’ve already asked our QA team and developers to look into it but I’d also like
   to ask you additionally:
 * 1. just to confirm, you installed the current/newest version of Hustle (7.8.5)
   on site, right? Or is it some other version (if so, please update it and check
   again)?
 * 2. what PHP version is your site powered with?
 * 3. the report that you got from WP Engine – is there any reference to any external
   source/vulnerability DB or report (such as e.g. Patchstack, Wordfence or similar)
   or is it only what you shared?
 * Please let us know as it’s important.
 * Kind regards,
    Adam
 *  Plugin Support [Dmytro – WPMU DEV Support](https://wordpress.org/support/users/wpmudevsupport16/)
 * (@wpmudevsupport16)
 * [1 year, 8 months ago](https://wordpress.org/support/topic/security-risk-27/#post-18056992)
 * Hello [@jpanders](https://wordpress.org/support/users/jpanders/),
 * I hope you’re doing great today!
 * We haven’t heard back from you for some time, so I’ll be marking this topic as
   resolved for now. Please feel free to re-open it, and let us know if you need
   any further assistance.
 * Best Regards,
    Dmytro

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Security Risk’ is closed to new replies.

 * ![](https://ps.w.org/wordpress-popup/assets/icon-256x256.gif?rev=3446944)
 * [Hustle - Email Marketing, Lead Generation, Optins, Popups](https://wordpress.org/plugins/wordpress-popup/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordpress-popup/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordpress-popup/)
 * [Active Topics](https://wordpress.org/support/plugin/wordpress-popup/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordpress-popup/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordpress-popup/reviews/)

 * 3 replies
 * 3 participants
 * Last reply from: [Dmytro – WPMU DEV Support](https://wordpress.org/support/users/wpmudevsupport16/)
 * Last activity: [1 year, 8 months ago](https://wordpress.org/support/topic/security-risk-27/#post-18056992)
 * Status: resolved