Vulnerability | ww.wp.xz.cn

Resolved SCMG1
(@scmg1)

8 months, 2 weeks ago

Vulnerability discovered:

WordPress WP-CRM System Plugin <= 3.4.4 is vulnerable to PHP Object Injection

https://patchstack.com/database/wordpress/plugin/wp-crm-system/vulnerability/wordpress-wp-crm-system-3-4-1-php-object-injection-vulnerability?_a_id=350

The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Support Plamen Georgiev
(@pgeorgiev)

8 months, 1 week ago

Hi @scmg1,

Thank you for reporting the vulnerability issue.

The team is looking into it right now, and we’ll release the new version of the plugin as soon as we’re ready.

All the best,

Plugin Support Plamen Georgiev
(@pgeorgiev)

7 months, 2 weeks ago

Hi @scmg1,

We have released the latest version 3.4.5 which includes a fix for the report above.

Thank you again for the report.

Best,
Plamen

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Vulnerability’ is closed to new replies.

3 replies
2 participants
Last reply from: Plamen Georgiev
Last activity: 7 months, 2 weeks ago
Status: resolved