Dear @darinmartini
Thank you for bringing this to our attention and for sharing the report.
We take security matters very seriously. We are currently reviewing the reported issue regarding the missing capability check in CTX Feed versions up to 6.6.18, as referenced by Patchstack. Our development team has already started investigating the claim to verify the scope and impact of the reported behavior.
If the issue is confirmed, we will release a patched version as soon as possible and notify users immediately. We strongly encourage all users to keep the plugin updated and follow best security practices.
In the meantime, if you have specific details, proof of concept, or steps to reproduce the issue, we would greatly appreciate it if you could share them with us. This will help us address the matter more efficiently.
Thank you again for reporting this and helping us improve the security of CTX Feed.
Kind regards,
how long till it’s fixed?
We will release the patched version on next monday. Thanks for your patience.
Dear @darinmartini
A new version of CTX Feed has been released that addresses the issue. Please update the plugin to the latest version to resolve the problem.
Thank you,
