Brooklyn Theme vulnerable to PHP Object Injection

  • Resolved chrisbee76

    (@chrisbee76)


    1 year, 5 months ago

    Hi all,

    I receive this error, but I have the Brooklyn Theme Version 4.9.9.1: “The brooklyn theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.9.7.6 via deserialization of untrusted input from an unknown parameter.” I´ve contacted the Brooklyn Theme Support and they said the problem was solved. Can you please help me to understand of this is an error or a minace for my website?

    Thank you in advance,

    Chris

    • This topic was modified 1 year, 5 months ago by chrisbee76.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support Stef (a11n)

    (@erania-pinnera)

    1 year, 5 months ago

    Hi there, @chrisbee76,

    Do you know if the theme needs updating for the threat resolution to be reflected on your end? If so, the next scan should take care of it and apply the updates.

    We can take a look at your site if you share the URL with us. If you want it to remain private, you can also contact us via this contact form. If you choose to reach out directly, please include a link to this thread. Thanks!

    Plugin Support Tamirat B. (a11n)

    (@tamirat22)

    1 year, 4 months ago

    Hello @chrisbee76,

    Do you have updates about that? We usually close inactive threads after one week of no activity, but we want to make sure we’re all set before marking it as solved. Thanks!

    Thread Starter chrisbee76

    (@chrisbee76)

    1 year, 4 months ago

    Hello @tamirat22,

    I will get in touch privately through the Jetpack contact form. If as pertains to a security issue I would also like to delete the thread.

    Thank you very much in advance.

    lastsplash (a11n)

    (@lastsplash)

    1 year, 4 months ago

    HI @chrisbee76

    I see the ticket in our system, so we’ll close this thread for now and continue the discussion there.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Brooklyn Theme vulnerable to PHP Object Injection’ is closed to new replies.