Title: Resolving Vulnerabilities
Last modified: December 27, 2023

---

# Resolving Vulnerabilities

 *  [JulieMarie](https://wordpress.org/support/users/juliemarie/)
 * (@juliemarie)
 * [2 years, 7 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/)
 * This plugin is awesome except that it made my site vulnerable to attack: [https://patchstack.com/database/vulnerability/jquery-collapse-o-matic/wordpress-collapse-o-matic-plugin-1-8-3-cross-site-scripting-xss-vulnerability?_a_id=431](https://patchstack.com/database/vulnerability/jquery-collapse-o-matic/wordpress-collapse-o-matic-plugin-1-8-3-cross-site-scripting-xss-vulnerability?_a_id=431)

Viewing 4 replies - 1 through 4 (of 4 total)

 *  [Vortex Radar](https://wordpress.org/support/users/ariel-b/)
 * (@ariel-b)
 * [2 years, 6 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/#post-17212061)
 * Wordfence is alerting to this issue now too.
 * [https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/jquery-collapse-o-matic/collapse-o-matic-184-authenticated-contributor-stored-cross-site-scripting](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/jquery-collapse-o-matic/collapse-o-matic-184-authenticated-contributor-stored-cross-site-scripting)
 * Hopefully we can get an update soon to address this issue.
 *  Plugin Author [twinpictures](https://wordpress.org/support/users/twinpictures/)
 * (@twinpictures)
 * [2 years, 6 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/#post-17212115)
 * Yes, _we_ would enjoy that too.
   All pull requests are welcomed:[https://github.com/baden03/collapse-o-matic´](https://github.com/baden03/collapse-o-matic´)
 *  [alexeydemidov](https://wordpress.org/support/users/alexeydemidov/)
 * (@alexeydemidov)
 * [2 years, 6 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/#post-17234597)
 * I submitted a pull request which fixes this vulnerabilities 3 weeks ago. [https://github.com/baden03/collapse-o-matic/pull/9](https://github.com/baden03/collapse-o-matic/pull/9)
 *  Plugin Author [twinpictures](https://wordpress.org/support/users/twinpictures/)
 * (@twinpictures)
 * [2 years, 6 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/#post-17234997)
 * [@alexeydemidov](https://wordpress.org/support/users/alexeydemidov/) can confirm.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Resolving Vulnerabilities’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/jquery-collapse-o-matic_fffeff.svg)
 * [Collapse-O-Matic](https://wordpress.org/plugins/jquery-collapse-o-matic/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/jquery-collapse-o-matic/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/jquery-collapse-o-matic/)
 * [Active Topics](https://wordpress.org/support/plugin/jquery-collapse-o-matic/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/jquery-collapse-o-matic/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/jquery-collapse-o-matic/reviews/)

## Tags

 * [hacking](https://wordpress.org/support/topic-tag/hacking/)

 * 7 replies
 * 6 participants
 * Last reply from: [twinpictures](https://wordpress.org/support/users/twinpictures/)
 * Last activity: [2 years, 6 months ago](https://wordpress.org/support/topic/resolving-vulnerabilities/#post-17234997)
 * Status: not resolved