Support » Plugin: YARPP - Yet Another Related Posts Plugin » YARPP – Yet Another Related Posts Plugin Critical Vulnerable

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author yarpp

    (@jeffparker)

    It should be resolved this week – fingers crossed. It’s going into review tomorrow to the reporter to verify the fix.

    Plugin Author yarpp

    (@jeffparker)

    A release candidate that should resolve open issues has been shared with WPScan (reporter of the issue) to review. Once they’ve done their verification and given their green light, we will release. We are hopeful that this will be completed very soon.

    Plugin Author yarpp

    (@jeffparker)

    The following issues have been verified / resolved:

    https://wpscan.com/vulnerability/574f7607-96d8-4ef8-b96c-0425ad7e7690

    https://wpscan.com/vulnerability/c6cf792b-054c-4d77-bcae-3b700f42130b

    There is one remaining issue that we’re taking a look at. In the meantime, please upgrade to the latest version of YARPP.

    Plugin Author yarpp

    (@jeffparker)

    Hi @trible Thank you for your patience.

    The remaining issue has been patched in v5.30.5. Please upgrade to the latest version.

    The issue was limited to Windows servers and the user would have to have writing permission. If your server is Linux (most are), you were not affected at all. In any case, it is patched now.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.