Low,risk vulnerability | ww.wp.xz.cn

Resolved cmarcc
(@cmarcc)

3 months, 1 week ago

Hi,

There is a low risk vulnerability for this plugin (broken access control, subscriber or +) listed on Patchstack: https://patchstack.com/database/wordpress/plugin/echo-knowledge-base/vulnerability/wordpress-knowledge-base-for-documentation-faqs-with-ai-assistance-plugin-16-011-0-broken-access-control-vulnerability.

Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Support echowpsupport
(@echowpsupport)

3 months, 1 week ago

Hi,

Thank you for bringing this to our attention.

We are aware of this issue and have already implemented a fix. The updated version will be released on February 21st.

To clarify, this is a low-severity issue — it only affects the ability to trigger a category sequence refresh. No user data is exposed or affected in any way. However, we take all security reports seriously and have addressed it promptly.

We recommend updating to the latest version once it becomes available.

Thanks,
The Echo Knowledge Base Team

Plugin Support echowpsupport
(@echowpsupport)

3 months ago

Hi,

The fix is included in version 16.20.0, released today. Please update to the latest version.

Thanks,
The Echo Knowledge Base Team

Plugin Support echowpsupport
(@echowpsupport)

3 months ago

Closing the resolved issue.

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

3 replies
2 participants
Last reply from: echowpsupport
Last activity: 3 months ago
Status: resolved