Title: Need Patch for widget options Last modified: March 3, 2026 --- # Need Patch for widget options * Resolved [norwood451](https://wordpress.org/support/users/norwood451/) * (@norwood451) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/) * Thank you for sending me an update when you patch for V4.1.3 so I an update as soon as Possible * David * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fneed-patch-for-widget-options%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 6 replies - 1 through 6 (of 6 total) * Thread Starter [norwood451](https://wordpress.org/support/users/norwood451/) * (@norwood451) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18839977) * Hi Mej- * You may want to share this until you get the patch taken care of for 4.1.3. I received the information below from SolidSecurity and Patchstack * FYI: I rolled back, with plugin WP Roolback, to 4,1.2 and got a report this am that it is a lower patchstack Priority. * WordPress Widget Options plugin <= 4.1.2 – Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability * **Patchstack Priority:** Low * **[View in Patchstack](https://patchstack.com/database/vulnerability/widget-options/wordpress-widget-options-plugin-4-1-2-authenticated-contributor-stored-cross-site-scripting-vulnerability?_a_id=431)** 4.1.2 * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18840827) * Hi [@norwood451](https://wordpress.org/support/users/norwood451/), * We appreciate your patience while we work on addressing this vulnerability. We still need to finalize a few changes to ensure there are no issues when updating to the next version. * Regarding the _Authenticated (Contributor+) Stored Cross-Site Scripting_ vulnerability, we have already patched this internally, and you can rest assured that the fix will be included in the upcoming release. * Please let us know if you have any other questions. * Kind Regards, Mej, Widget Options Team * Thread Starter [norwood451](https://wordpress.org/support/users/norwood451/) * (@norwood451) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18840930) * Hi Mej * Thank you. * I know that that _Authenticated (Contributor+) Stored Cross-Site Scripting_ vulnerability has been patched. * I was pointing out that other Users may want to Roll Back to the older version 4.1.2, as the older version is **Patchstack Priority:** **Low 4.12. ** compared to the currencdt version which is **Patchstack Priority:** **HIGH 4.1.3. ** * **[View in Patchstack](https://patchstack.com/database/vulnerability/widget-options/wordpress-widget-options-plugin-4-1-2-authenticated-contributor-stored-cross-site-scripting-vulnerability?_a_id=431)** 4.1.2 * That is what I did using plugin WP Roolback while waiting for the new patch after** 4.1.3** * Thank you so much again! * David * [christinahills](https://wordpress.org/support/users/christinahills/) * (@christinahills) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18841371) * the rollback plugin is fantastic! * great suggestion!’ * thanks * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [3 months ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18845438) * Hi Dear users, Our team is working to finalize the fix, and we expect to release it within the week. We appreciate your patience as we ensure everything is stable. * Kind regards, Mej, Widget Options Team * Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/) * (@mej) * [2 months, 3 weeks ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18850320) * Hi Dear users [@norwood451](https://wordpress.org/support/users/norwood451/), [@christinahills](https://wordpress.org/support/users/christinahills/), * A new version has just been released. Have you had a chance to update your Widget Options plugin? If not, please kindly update to the latest version at your earliest convenience. * For details about the new Display Logic Snippet System, please refer to the pinned post here: [https://wordpress.org/support/topic/display-logic-update-version-4-2-0/](https://wordpress.org/support/topic/display-logic-update-version-4-2-0/) * If you experienced any issues with version 4.2.0, please kindly create a new topic in our support forum so we can relay the details to our development team and help get it resolved. * Thanks! * Kind Regards, Mej, Widget Options Team Viewing 6 replies - 1 through 6 (of 6 total) You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fneed-patch-for-widget-options%2F%3Foutput_format%3Dmd&locale=en_US) to reply to this topic. * ![](https://ps.w.org/widget-options/assets/icon-256x256.gif?rev=2513739) * [Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets](https://wordpress.org/plugins/widget-options/) * [Frequently Asked Questions](https://wordpress.org/plugins/widget-options/#faq) * [Support Threads](https://wordpress.org/support/plugin/widget-options/) * [Active Topics](https://wordpress.org/support/plugin/widget-options/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/widget-options/unresolved/) * [Reviews](https://wordpress.org/support/plugin/widget-options/reviews/) * 9 replies * 3 participants * Last reply from: [Mej de Castro](https://wordpress.org/support/users/mej/) * Last activity: [2 months, 3 weeks ago](https://wordpress.org/support/topic/need-patch-for-widget-options/#post-18850320) * Status: resolved