Title: plugin vulnerability
Last modified: March 9, 2026

---

# plugin vulnerability

 *  Resolved [imokweb](https://wordpress.org/support/users/imokweb/)
 * (@imokweb)
 * [2 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-52/)
 * Hi there
 * I’m Using managewp to monitor sites and The directorist plugin came up as vulnerable
 * [https://patchstack.com/database/wordpress/plugin/directorist/vulnerability/wordpress-directorist-plugin-8-5-6-broken-access-control-vulnerability](https://patchstack.com/database/wordpress/plugin/directorist/vulnerability/wordpress-directorist-plugin-8-5-6-broken-access-control-vulnerability)
 * [https://patchstack.com/database/wordpress/plugin/directorist/vulnerability/wordpress-directorist-plugin-8-5-6-open-redirection-vulnerability](https://patchstack.com/database/wordpress/plugin/directorist/vulnerability/wordpress-directorist-plugin-8-5-6-open-redirection-vulnerability)
 * Can you take a look at it and fix it?
 * thanks

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Support [Al-Amin Khan](https://wordpress.org/support/users/alamin56649/)
 * (@alamin56649)
 * [2 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-52/#post-18846044)
 * Hi [@imokweb](https://wordpress.org/support/users/imokweb/),
 * Thank you for reporting this.
 * These vulnerabilities have already been **fixed and patched in the latest version
   of the plugin**. The Patchstack listing may still show the issue because it can
   take some time for their team to review and update the status after a patch is
   released.
 * Please make sure you **update Directorist to the latest version** to ensure your
   site remains secure.
 * If you have any questions or notice anything unusual after updating, feel free
   to let us know.
 *  Thread Starter [imokweb](https://wordpress.org/support/users/imokweb/)
 * (@imokweb)
 * [2 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-52/#post-18847708)
 * hi [@alamin56649](https://wordpress.org/support/users/alamin56649/)
 * Just in case there is something more left there, they have changed the title 
   to for the posts and they say that WordPress Directorist Plugin <= 8.6.3 is vulnerable
   to a medium priority Broken Access Control, WordPress Directorist Plugin <= 8.6.3
   is vulnerable to Open Redirection
 * thanks

Viewing 2 replies - 1 through 2 (of 2 total)

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fplugin-vulnerability-52%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/directorist/assets/icon-256x256.gif?rev=3185058)
 * [Directorist: AI-Powered Business Directory, Listings & Classified Ads](https://wordpress.org/plugins/directorist/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/directorist/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/directorist/)
 * [Active Topics](https://wordpress.org/support/plugin/directorist/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/directorist/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/directorist/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [imokweb](https://wordpress.org/support/users/imokweb/)
 * Last activity: [2 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-52/#post-18847708)
 * Status: resolved