Widget Options Plugin <= 4.1.0 – Arbitrary Code Execution vulnerability | ww.wp.xz.cn

Resolved hanmedia
(@hanmedia)

1 year, 3 months ago

HI,

WordPress Toolkit show this message:

WordPress Widget Options Plugin <= 4.1.0 – Arbitrary Code Execution vulnerability
Arbitrary Code Execution vulnerability discovered by Tran Nguyen Bao Khanh in WordPress Plugin Widget Options (versions <= 4.1.0)

Regards
Olaf

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author Mej de Castro
(@mej)

1 year, 3 months ago

Hi @hanmedia,

Thanks for the update! The Patchstack team has also informed us and our dev team is actively working on a patch as soon as possible.

Please stay tune for update.

Kind Regards,
Mej, Widget Options Team

Plugin Author Mej de Castro
(@mej)

1 year, 3 months ago

Hi @hanmedia,

The new version has been released, which includes a patch for the vulnerability reported by Patchstack. Please update at your convenience.

Thank you for your patience, and feel free to reach out if you need any further assistance!

Kind Regards,
Mej, Widget Options Team

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Widget Options Plugin <= 4.1.0 – Arbitrary Code Execution vulnerability’ is closed to new replies.

3 replies
2 participants
Last reply from: Mej de Castro
Last activity: 1 year, 3 months ago
Status: resolved