• Resolved michaelbarnettii

    (@michaelbarnettii)


    Hello BetterDocs Team,

    We recently received a security notification from the Wordfence plugin on our website indicating that the BetterDocs plugin may contain a security vulnerability.

    The scan reported the following:

    • Plugin: BetterDocs
    • Severity: 6.4/10.0 (Medium)
    • Reported by: Wordfence
    • Scan Date: June 19, 2026

    Could you please provide clarification regarding this reported vulnerability?

    Specifically, we would appreciate information on:

    1. Whether this is a known vulnerability affecting BetterDocs.
    2. Which versions are impacted.
    3. Whether the issue has already been patched in a recent release.
    4. Any recommended mitigation steps if a fix is not yet available.
    5. Any official security advisory or CVE reference related to this report.

    We are currently using BetterDocs on our production website and would like to ensure that our installation remains secure.

    Thank you for your assistance. We look forward to your clarification and any further updates.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support Amin

    (@amin7)

    Hi @michaelbarnettii

    Greetings!

    I think the check was run against an older version of BetterDocs.Yes, this was a known issue and we already addressed it. 🙂 An authenticated (contributor) stored XSS via the blockId block attribute, affecting version 4.5.3 and earlier.

    The good news is that it’s already been fixed. Our dev team ran a fresh vulnerability scan against our latest release (4.5.4) and confirmed the issue is fully resolved. 🙂

    Our recommendation is simply to update BetterDocs to version 4.5.4 and you’ll be all set. So, Kindly update BetterDocs to 4.5.4 and re-scan, let us know the status.

    Let us know if you have any other questions — happy to help!

    Best regards

    Plugin Support Amin

    (@amin7)

    Hi @michaelbarnettii

    Greetings!

    We have not heard from you since our last reply. Could you please share the status after updating of BetterDocs version, 4.5.4.
    Looking forward to hearing from you. 🙂

    Thanks

    Plugin Support Sadman Sakib Nadvi

    (@sadmansakibnadvi)

    Hello @michaelbarnettii,

    Hope you’re doing well.

    As we’re not getting any response from you, we are assuming your issue has been solved. And so, we’re going to mark this topic as resolved now. If the issue still persists, feel free to reply here and we’ll be happy to assist further.

    Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.