Title: Security Warning: needs update
Last modified: July 3, 2021

---

# Security Warning: needs update

 *  [nyssamccanmore](https://wordpress.org/support/users/nyssamccanmore/)
 * (@nyssamccanmore)
 * [4 years, 11 months ago](https://wordpress.org/support/topic/security-warning-needs-update/)
 * Wordfence just gave me the following error message for this plugin:
 * Plugin Name: WP DoNotTrack
    Current Plugin Version: 0.8.8 Details: It has unpatched
   security issues and may have compatibility problems with the current version 
   of WordPress.

Viewing 1 replies (of 1 total)

 *  [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/)
 * (@optimizingmatters)
 * [4 years, 11 months ago](https://wordpress.org/support/topic/security-warning-needs-update/#post-14623770)
 * I can confirm there’s an authenticated stored XSS vulnerability (in laymen-speak:
   if you are an administrator you can use the some of the option-fields to add 
   malicious JavaScript to the settings-page) and the plugin has for now been closed.
   I hope to have time for a rewrite of the plugin to fix the issue as part of a
   rewrite which will likely switch to allowlist-only and use CSP (content security
   policy).
 * frank

Viewing 1 replies (of 1 total)

The topic ‘Security Warning: needs update’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/wp-donottrack.svg)
 * [WP DoNotTrack](https://wordpress.org/plugins/wp-donottrack/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-donottrack/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-donottrack/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-donottrack/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-donottrack/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-donottrack/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [Optimizing Matters](https://wordpress.org/support/users/optimizingmatters/)
 * Last activity: [4 years, 11 months ago](https://wordpress.org/support/topic/security-warning-needs-update/#post-14623770)
 * Status: not resolved