Security vulnerability

SolidWP/Patchstack is still reporting the issue as well: https://patchstack.com/database/wordpress/plugin/weather-atlas/vulnerability/wordpress-weather-atlas-widget-plugin-3-0-1-cross-site-scripting-xss-vulnerability?_a_id=431

You marked a previous support post with a similar vulnerability issue as resolved, but it seems this XSS vulnerability remains even on this 3.0.2 version. Do you have any plans to address this?

https://patchstack.com/database/wordpress/plugin/weather-atlas/vulnerability/wordpress-weather-atlas-widget-plugin-3-0-1-cross-site-scripting-xss-vulnerability

@weatheratlas – Thanks for finally getting around to fixing this. Unfortunately, I could leave my clients’ websites exposed to this vulnerability for the past 7 months, so I was forced moved them to a different plugin that keeps their code updated more regularly.

• This reply was modified 11 months, 1 week ago by Ken Sim.