Security issue | ww.wp.xz.cn

Rainer R.
(@rainer-r)

1 week, 6 days ago

Hello,
Wordfence shows security issue.
https://mallorca-broker.com
Worpress 6.9.4 , Theme editor 3.2
Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Theme Editor” until a patched version is available.
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/theme-editor/theme-editor-32-cross-site-request-forgery
Hope you can solve the security problem.
Regards
Rainer

The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)

Matthew Jason Klodt
(@matthewjasonklodt)

1 week, 5 days ago

Yes, I read an article posted by WordFence about this vulnerability a couple of months ago. Is this vulnerability going to be patched in the near future?

If not, I’ll need to delete the Theme Editor plugin.

Best,
Matthew

Plugin Support Emma (Support Executive)
(@emma1991)

1 week ago

Hi @rainer-r @matthewjasonklodt ,

Our team has fixed this vulnerability in Theme Editor plugin. The fix will be shared on the live stage soon. Thanks for the alert.
If you have any questions about the fix, please feel free to ask.

Regards,
WP Theme Editor Support.

Thread Starter Rainer R.
(@rainer-r)

6 days, 22 hours ago

Good news 👍

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

5 replies
3 participants
Last reply from: Rainer R.
Last activity: 6 days, 22 hours ago
Status: not resolved