Warning message by WAF & Patchman | ww.wp.xz.cn

Resolved Bas
(@basz85)

7 months, 4 weeks ago

Hi,

I get warning messages from WordFence plugin and from my Patchman that Getwid has an vulnerability issue in the recent/current version. I know that some checkers can give false positives.

WordFence message:

Plugin Name: Getwid | Current Plugin Version: 2.1.2

Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Getwid” until a patched version is available. Get more information. (opens in new tab)

Repository URL: https://ww.wp.xz.cn/plugins/getwid (opens in new tab)

Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/64f4789e-bbe7-4c07-86c6-f2767d6e1901?source=plugin (opens in new tab)

Vulnerability Severity: 4.3/10.0 (Medium)

I saw in the forum topics that many users of the plugin got the same message, but it’s not responded yet nor giving updates if there’s a fix / patch version available. I use this plugin on many websites for my clients and on my own. I can’t just de-activate this plugin… I mean, that’s alot of work and find another plugin that works the same as yours.

Can you give me and others a update?

Thanks in advance.

Bas

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Support Eugene White
(@eugenewhite)

7 months, 4 weeks ago

Hello Bas,

As I mentioned in a different topic, our developers are aware of this vulnerability issue and will work to address it in the next plugin release.

We appreciate your understanding and apologize for the inconvenience!

Plugin Support Eugene White
(@eugenewhite)

7 months, 3 weeks ago

Hello,

I hope you’re doing well.

We are excited to announce the release of version 2.1.3 of the Getwid plugin. This update addresses the security vulnerability issue you reported.

Please update the plugin to the latest version, and feel free to reach out if you need our help.

Thread Starter Bas
(@basz85)

7 months, 2 weeks ago

Hi Eugene,

Thanks for the heads up! Apologies for the delay of answering.

I had a notification that was new update/version (patch) was available for Getwid. I have updated the plugin on all sites from my clients and myself.

Have a nice day.

Best regards, Bas

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Warning message by WAF & Patchman’ is closed to new replies.

Tags

5 replies
2 participants
Last reply from: Bas
Last activity: 7 months, 2 weeks ago
Status: resolved