Title: vulnerability
Last modified: June 4, 2020

---

# vulnerability

 *  Resolved [aurepons](https://wordpress.org/support/users/aurepons/)
 * (@aurepons)
 * [6 years, 1 month ago](https://wordpress.org/support/topic/vulnerability-29/)
 * Hi, I have done a google best practices audit to my website and appear a warning
   about your plugin.
 * It seems you are including a jQuery 1.4.2 script version in your assets/libs 
   folder that is obsolete and have some vulnerabilities.
 * Could you upgrade or link to the WordPress included version?
 * Thank you, and congratulations for the plugin.

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Moderator [Steven Stern (sterndata)](https://wordpress.org/support/users/sterndata/)
 * (@sterndata)
 * Volunteer Forum Moderator
 * [6 years, 1 month ago](https://wordpress.org/support/topic/vulnerability-29/#post-12786534)
 * For what it’s worth, [https://developer.wordpress.org/plugins/wordpress-org/detailed-plugin-guidelines/#13-plugins-must-use-wordpress-default-libraries](https://developer.wordpress.org/plugins/wordpress-org/detailed-plugin-guidelines/#13-plugins-must-use-wordpress-default-libraries)
   says that plugins must not include their own version of jQuery. I’ve asked the
   plugins team to look into this.
 *  Plugin Author [Lana Codes](https://wordpress.org/support/users/lanacodes/)
 * (@lanacodes)
 * [6 years, 1 month ago](https://wordpress.org/support/topic/vulnerability-29/#post-12786631)
 * Yes, I can upgrade.
 * The plugin does NOT load jQuery with the wp_register_script() function from plugin
   folder, but uses the WordPress core. I know WordPress standards.
 * Only lana-download.html uses the jQuery plugin for the shortcode popup. It’s 
   static html.
 *  Plugin Author [Lana Codes](https://wordpress.org/support/users/lanacodes/)
 * (@lanacodes)
 * [6 years, 1 month ago](https://wordpress.org/support/topic/vulnerability-29/#post-12786668)
 * Can you give more information on where you can see jQuery version 1.4.2?
 * The plugin uses jQuery version 1.12.4, which is the latest version 1.x:
    [https://plugins.trac.wordpress.org/browser/lana-downloads-manager/trunk/assets/libs/jquery/jquery.min.js](https://plugins.trac.wordpress.org/browser/lana-downloads-manager/trunk/assets/libs/jquery/jquery.min.js)

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘vulnerability’ is closed to new replies.

 * ![](https://ps.w.org/lana-downloads-manager/assets/icon-128x128.jpg?rev=1512693)
 * [Lana Downloads Manager](https://wordpress.org/plugins/lana-downloads-manager/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/lana-downloads-manager/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/lana-downloads-manager/)
 * [Active Topics](https://wordpress.org/support/plugin/lana-downloads-manager/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/lana-downloads-manager/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/lana-downloads-manager/reviews/)

 * 3 replies
 * 3 participants
 * Last reply from: [Lana Codes](https://wordpress.org/support/users/lanacodes/)
 * Last activity: [6 years, 1 month ago](https://wordpress.org/support/topic/vulnerability-29/#post-12786668)
 * Status: resolved