Reported Vulnerability | ww.wp.xz.cn

egsteam
(@egsteam)

7 months ago

Apparently, this vulnerability was found with the plugin back in March. Is this something that will be fixed? For now, I’ve deactivated the plugin on all sites that use it.

https://research.cleantalk.org/reports/search/wp-nested-pages/CVE-2025-0718

Viewing 1 replies (of 1 total)

llmarlou
(@llmarlou)

6 months ago

This has been fixed in v3.2.13, see https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/wp-nested-pages/nested-pages-3212-authenticated-contributor-stored-cross-site-scripting

Viewing 1 replies (of 1 total)

The topic ‘Reported Vulnerability’ is closed to new replies.

2 replies
2 participants
Last reply from: llmarlou
Last activity: 6 months ago
Status: not resolved