IMPORTANT : Security issue found with the plugin

  • ahanastorepro

    (@ahanastorepro)


    1 month, 1 week ago

    Security issue is seen with latest version as well. Even after updatin it to latest version the issue is still seen.

Viewing 3 replies - 1 through 3 (of 3 total)
  • themeeditorsupport

    (@themeeditorsupport)

    1 month ago

    Hi @ahanastorepro ,

    Thank you for reporting this security concern. This is very important to us.

    To help you quickly, could you please share:

    • What specific security issue are you experiencing?
    • Your current Theme Editor version
    • Steps to reproduce the issue
    • Did you receive any security warnings (Wordfence, etc.)?

    For security-sensitive issues, please do not post details publicly on the forum. Instead, email us directly at [email protected] with the details.

    We take security very seriously and will investigate immediately.

    Best regards,
    WP Theme editor Support

    4ud

    (@4ud)

    1 week, 6 days ago

    Wordfence warning:
    https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/theme-editor/theme-editor-32-cross-site-request-forgery

    Plugin Support Emma (Support Executive)

    (@emma1991)

    1 week, 5 days ago

    Hi @4ud ,

    Thanks for bringing this to our attention and for sharing the Wordfence advisory.

    We’ve looked into this and our team has already addressed the CSRF vulnerability. The fix has been prepared and will be pushed to the live stage shortly.

    We recommend keeping an eye out for the upcoming update.a patched version is on its way very soon.

    Appreciate your patience!

    Best regards,
    Theme Editor Support Team

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.