Hi @wfrmitstaff,
The fix for this will be released tomorrow.
Best,
Scott
Hi @wfrmitstaff,
This has been fixed in version 1.5.2 of the plugin, released today.
Best,
Scott
Hi, based on patch stack the version 1.5.2 is still affected. Could you kindly double check?
https://patchstack.com/database/wordpress/plugin/easy-paypal-donation/vulnerabilities
CVSS Score4.7
#WordPress Accept Donations with PayPal plugin <= 1.5.2 – Open Redirection vulnerability
-Vulnerability type: Open Redirection
-No Update Available
Thanks in advance for your cooperation.
Hi @wfrmitstaff,
1. This was never a security issue at all. 100% no chance of any security issue every happening from this. It’s literally impossible. I spent hours looking into it and there is nothing there.
2. Even though there was no issue, I fixed the “vulnerability” in version 1.5.1.
Please mark this as resolved.
Best,
Scott
Thanks for your feedback, could you kindly report this to patchstack? In the opposite case some security plugin will reports your plugin as vulnerable.
Thanks in adcavnce for your cooperation.
