Hi Kento,
Eh… Wordfence says the problem is in 3.8.0???
Will there be a patched version soon? Jetpack protect now also shows this:
What is the problem?
The installed version of Groups (3.8.0) has a known security vulnerability.How to fix it?
Update to Groups 6.8.0
Plugin Author
Kento
(@proaktion)
As I have already mentioned, this is fixed in Groups 3.8.0. You must update to the latest version. For discrepancies in reports provided by any tool, please reach out to the maintainers so they can update their information about Groups.
I have deleted and reinstalled/activated the latest version of Groups. Which is 3.8.0.
Wordfence still finds the vulnerability!
Patchstack and WP Engine also show 3.8.0 as having vulnerabilities. Are there plans to update it?
Plugin Author
Kento
(@proaktion)
You are right: I received a response on Discord after complaining like you suggested:
Ahh, you’re right. It looks like the record had a mistake in the vulnerable and fixed versions ranges. Those were corrected today.
Excuse me for being stubborn: I thought only authors made mistakes 🙂
Plugin Author
Kento
(@proaktion)
@a-klerk No worries, thanks for keeping an eye out on it, feedback on Groups is always welcome and that of course includes these cases.
