Support » Plugin: AuthorSure » Widespread WordPress Plugins and Themes Security Vulnerability

  • Resolved fish911

    (@fish911)


    Hi,
    I’m sure the AuthorSure team is aware of this but I’d like to double check to be on the safe side and make sure that all extensions AuthorSure is using has also patched any this Vulnerability.

    Article:
    http://marketblog.envato.com/news/wordpress-item-security-vulnerability/

    This is a general community announcement to bring your attention to an XSS vulnerability affecting multiple WordPress plugins and themes. The vulnerability is caused by a common code pattern used in WordPress plugins and themes available from ThemeForest and CodeCanyon, the wordpress.org website and other sources.

    This issue is not limited to themes and plugins purchased from ThemeForest or CodeCanyon. Anyone using a WordPress website, regardless of where the theme or plugin was sourced, needs to be aware of this and take immediate action to ensure it is secure.

    Thanks
    Fish

    https://wordpress.org/plugins/authorsure/

Viewing 1 replies (of 1 total)
  • Plugin Author Russell Jamieson

    (@powerblogservice)

    Thankls for your question

    AuthorSure does currently use the add_query_arg() and remove_query_arg() functions so is not exposed

Viewing 1 replies (of 1 total)
  • The topic ‘Widespread WordPress Plugins and Themes Security Vulnerability’ is closed to new replies.