Title: Email Encoder Security Vulnerability Reported
Last modified: September 2, 2023

---

# Email Encoder Security Vulnerability Reported

 *  Resolved [shulmax](https://wordpress.org/support/users/shulmax/)
 * (@shulmax)
 * [2 years, 9 months ago](https://wordpress.org/support/topic/email-encoder-security-vulnerability-reported/)
 * My latest scan reported the following vulnerability about The Plugin “Email Encoder–
   Protect Email Addresses”. However, the plugin is up-to-date and tested for the
   current version of wordpress. Link to plugin: [https://wordpress.org/plugins/email-encoder-bundle/](https://wordpress.org/plugins/email-encoder-bundle/)
 * Is there anything I need to do from my end?
    - The Plugin “Email Encoder – Protect Email Addresses” has a security vulnerability.
      Type: Plugin Vulnerable
    - Issue Found August 31, 2023 3:36 amCritical
 *  - **Plugin Name: **Email Encoder – Protect Email Addresses
    - **Current Plugin Version: **2.1.7
    - **Details: **To protect your site from this vulnerability, the safest option
      is to deactivate and completely remove “Email Encoder – Protect Email Addresses”
      until a patched version is available. [Get more information.(opens in new tab)](https://www.wordfence.com/help/?query=scan-result-plugin-vulnerable)
    - **Vulnerability Information: **[https://www.wordfence.com/threat-intel/vulnerabilities/id/e90f04e4-eb4c-4822-89c6-79f553987c37?source=plugin(opens in new tab)](https://www.wordfence.com/threat-intel/vulnerabilities/id/e90f04e4-eb4c-4822-89c6-79f553987c37?source=plugin)
    - **Vulnerability Severity: **6.4/10.0 (Medium)
 *  -  This topic was modified 2 years, 9 months ago by [Steven Stern (sterndata)](https://wordpress.org/support/users/sterndata/).
    -  This topic was modified 2 years, 9 months ago by [shulmax](https://wordpress.org/support/users/shulmax/).

Viewing 1 replies (of 1 total)

 *  Plugin Support [wfpeter](https://wordpress.org/support/users/wfpeter/)
 * (@wfpeter)
 * [2 years, 9 months ago](https://wordpress.org/support/topic/email-encoder-security-vulnerability-reported/#post-17024866)
 * Hi [@shulmax](https://wordpress.org/support/users/shulmax/), thanks for your 
   question.
 * If the scan found version 2.1.7 at the start of its process, it doesn’t check
   again to see whether any automatic updates took place during the scan. It looks
   like the 2.1.8 version is patched and if you’re now on that version there’s no
   further action to take. The next scan should see that is the case and no longer
   report it.
 * Thanks,
   Peter.

Viewing 1 replies (of 1 total)

The topic ‘Email Encoder Security Vulnerability Reported’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [wfpeter](https://wordpress.org/support/users/wfpeter/)
 * Last activity: [2 years, 9 months ago](https://wordpress.org/support/topic/email-encoder-security-vulnerability-reported/#post-17024866)
 * Status: resolved