Titan Framework issue

  • Resolved redkite

    (@redkite)


    4 years, 9 months ago

    Will the Titan Framework issue be fixed?

    Titan Framework <= 1.12.1 – Reflected Cross-Site Scripting (XSS)

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Rui Guerreiro

    (@takanakui)

    4 years, 9 months ago

    Hi @redkite,

    I think this is a false positive by WP Scan due to the fact that we never changed the version number of the TitanFramework.

    We modified during the last years and will remove any reference to TitanFramework till the end of the year.

    The file that they identified has the arguments properly sanitized and I’m waiting for the proof of concept they will release next week to see what exactly they identified.

    Not sure what method they use to identify the vulnerabilities.

    For now if you don’t feel safe better to deactivate the plugin.

    Plugin Author Rui Guerreiro

    (@takanakui)

    4 years, 9 months ago

    Hi @redkite,

    I got in touch with WPScan and they were very helpful and manage to release and update that fix the reported situation in the report.

    Just update to the latest 2.8.2.3

    Thanks

    Thread Starter redkite

    (@redkite)

    4 years, 9 months ago

    Thanks!

    Plugin Author Rui Guerreiro

    (@takanakui)

    4 years, 9 months ago

    No problem. I’m glad this is sorted.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Titan Framework issue’ is closed to new replies.