XSS Vulnerability | ww.wp.xz.cn

Resolved alberto.pm9
(@albertopm9)

8 months ago

Hello there

https://patchstack.com is warning about an XSS vulnerability on version 1.7.6.
Could you please fix it?

Thanks in advance

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Support jenneycs
(@jenneycs)

8 months ago
Hi @albertopm9,

Thank you for letting us know.
As far as our checks show, version 1.7.6 has no known vulnerability. The issue was in a prior release and was resolved immediately. Patchstack’s database confirms this here:
https://tinyurl.com/58utxvh5

To better understand your concern, could you please share the specific details you have from Patchstack (e.g., report link, proof-of-concept, or logs) that mention version 1.7.6? That will help us verify and respond more accurately.

Thanks again for helping keep everything secure.

Best Regards
- This reply was modified 8 months ago by jenneycs.
Thread Starter alberto.pm9
(@albertopm9)

8 months ago

Hello
Sorry, but this is what I get from patchstack: https://patchstack.com/database/wordpress/plugin/real-time-auto-find-and-replace/vulnerability/wordpress-better-find-and-replace-plugin-1-7-6-cross-site-scripting-xss-vulnerability?_a_id=350

Could you fix it?

Regards

Plugin Support jenneycs
(@jenneycs)

8 months ago

Hi @albertopm9

Thank you for sharing this information with us. We sincerely appreciate your diligence in reporting the matter. Please be assured that our team will address this promptly, and the fix will be incorporated in the next release, which will be deployed at the earliest possible opportunity.

Best regards,

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘XSS Vulnerability’ is closed to new replies.

5 replies
2 participants
Last reply from: jenneycs
Last activity: 8 months ago
Status: resolved