Tableberg security vulnerability

  • Resolved Bruno Martinez

    (@brmartinez)


    5 months, 2 weeks ago

    Hello, I’ve received this alert from jetpack:

    Vulnerable plugin: tableberg (version 0.6.10)Vulnerability found in a pluginMore

    What did the Jetpack find?

    The plugin tableberg (version 0.6.10) has a known vulnerability. Table Block by Tableberg <= 0.6.10 – Contributor+ Stored XSS

    Learn more about this vulnerability ↗

    How do I resolve or deal with this detection?

    Jetpack Scan cannot automatically fix this threat. We suggest you resolve the threat manually: ensure that WordPress, your theme, and all your plugins are up to date, and remove the offending code, theme, or plugin from your website.

    If you need further assistance addressing this threat, we recommend consulting Codeable , a trusted marketplace of highly rated WordPress experts. They have identified a select group of security specialists to assist with these projects. Prices range from $70 to $120 per hour, and you can obtain a free, no-obligation quote.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor Istiak Rayhan

    (@istiakrayhan)

    5 months, 2 weeks ago

    Hi @brmartinez ,

    We’ve fixed the issue. The fix will be available in the next release.

    Regards,
    Istiak

    Plugin Contributor Istiak Rayhan

    (@istiakrayhan)

    5 months, 2 weeks ago

    @brmartinez Please update Tableberg to the latest version. It will fix the security issue.

    billpetro

    (@billpetro)

    5 months, 2 weeks ago

    I have updated to the latest Tableberg (Pro) plugin, and I’m running the latest WordPress release, and Jetpack Protest scan still shows this error:

    Tableberg (0.6.12)
    Vulnerable Plugin: tableberg (version 0.6.12)

    What is the problem?

    The plugin tableberg (version 0.6.12) has a known vulnerability. Table Block by Tableberg <= 0.6.10 – Contributor+ Stored XSS

    Plugin Contributor Istiak Rayhan

    (@istiakrayhan)

    5 months, 2 weeks ago

    @billpetro We’ve already fixed the issue. I hope the JetPack notice will go away soon. In the meantime, we will check further.

Viewing 4 replies - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.