Security Vulnerability | ww.wp.xz.cn

Resolved latif13
(@latif13)

1 year, 3 months ago
- Plugin Name: EazyDocs
- Current Plugin Version: 2.5.8
- Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “EazyDocs” until a patched version is available. Get more information.(opens in new tab)
- Repository URL: https://ww.wp.xz.cn/plugins/eazydocs(opens in new tab)
- Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/61bc71cf-aeaf-4f33-8367-68d5e8ea442c?source=plugin(opens in new tab)
- Vulnerability Severity: 8.8/10.0 (High)
vulnerability identified by wordfence

This was previously reported to your support and we were told that the issue is being investigated and will be fixed soon
The new release does not fix this vulnerability kindly fix this as soon as possible as it is putting our websites at risk
- This topic was modified 1 year, 3 months ago by latif13.

Viewing 1 replies (of 1 total)

delweratjk
(@delweratjk)

1 year, 3 months ago

Thank you for your report. We have looked into the issue mentioned by Wordfence about the Local File Inclusion (LFI) vulnerability in the EazyDocs plugin (versions up to and including 2.5.8). However, after checking our plugin carefully, we did not find any problems related to this issue.

We can confirm that there is no sign of the LFI vulnerability in our plugin. We appreciate Wordfence for bringing up potential security risks, and we are always monitoring and improving the security of our plugin.

If you can provide any specific code or error logs that show where the problem might be coming from, that would help us investigate further. We are committed to keeping our plugin secure and addressing any concerns quickly.

Viewing 1 replies (of 1 total)

The topic ‘Security Vulnerability’ is closed to new replies.

2 replies
2 participants
Last reply from: delweratjk
Last activity: 1 year, 3 months ago
Status: resolved