There is no report on Wordfence to offer you. The notification came directly from WordPress saying: The Redux Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data’ parameter in all versions up to, and including, 4.5.7 due to insufficient input sanitization and output escaping.
It was in the shortcodes extension: https://plugins.trac.ww.wp.xz.cn/browser/redux-framework/tags/4.5.7/redux-core/inc/extensions/shortcodes/class-redux-shortcodes.php#L205
It’s since been patched.
Hello,
Thank you for your response, however I am unable to access the link sent.
The link is to the WordPress plugin trac. If it’s not loading, try back later. I have no control over it.
