WordFence Critical Error | WordPress.org

Resolved Aurovrata Venet
(@aurovrata)

5 years ago
I am using 404page on a multisite with WordFence installed as a security plugin. It complains that the plugin is not longer available in the WP repo. I don’t see this as an issue personally, but my client is getting worried as WordFence is flagging this as a critical error.

why have you closed your plugin page?
- This topic was modified 5 years ago by Aurovrata Venet.

Viewing 1 replies (of 1 total)

Plugin Author Peter Raschendorfer
(@petersplugins)

5 years ago

The plugin page is temporarily withdrawn due to a discovered security vulnerability. It’s already fixed. It has to be reviewed by the WordPress Plugin Team bevor re-opening. I’m confident this will happen within the next hours.

The gap makes it possible to change user settings. Neither malicious code can be injected nor control of the system can be obtained. So there is no big risk. It’s just a general procedure that plugins are blocked immediately after becoming aware of a security issue – even if the risk is extremely low.

There’s no need to worry. I’m pretty sure, my fix will be approved and the plugin will bei re-opened by the WP Plugin Team.

Regards,
Peter

Viewing 1 replies (of 1 total)

The topic ‘WordFence Critical Error’ is closed to new replies.

In: Plugins
1 reply
2 participants
Last reply from: Peter Raschendorfer
Last activity: 5 years ago
Status: resolved