mrwhostheboss
Forum Replies Created
-
Forum: Plugins
In reply to: [Read More & Accordion] Vulnerable Plugin: expand-maker (version 3.2.2)We are not together.
Forum: Plugins
In reply to: [Read More & Accordion] Vulnerable Plugin: expand-maker (version 3.2.2)I have just given you the information. Please check this link:
https://wpscan.com/vulnerability/1e733ccf-8026-4831-9863-e505c2aecba6Forum: Plugins
In reply to: [Read More & Accordion] Vulnerable Plugin: expand-maker (version 3.2.2)Hi again.
This is from Jetpack:
“The plugin unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.”
CVE-2023-3392
OBJECT INJECTION
A8: Insecure Deserialization
CWE-502
Original Researcher: Do Xuan Trung
1e733ccf-8026-4831-9863-e505c2aecba6
https://wpscan.com/vulnerability/1e733ccf-8026-4831-9863-e505c2aecba6Hi.
Thanks for the help.
The latest version 2.2.5 fixes this problem. Great work.Hi defjam2oo1
Thanks for the link with screenshot.
This is exactly the problem i’m having. It’s an error with Translate Multilingual sites – TranslatePress. I tried installing only WooCommerce and Translate Multilingual sites – TranslatePress on a dummy site and the problem still shows up.
Let’s hope they soon fix the issue.
This is turning up on my website:
Fatal error: Allowed memory size of 134217728 bytes exhausted (tried to allocate 19661074 bytes) in /customers/a/b/3/mydomian.com/httpd.www/wp-content/plugins/better-wp-security/modules/free/backup/class-itsec-backup.php on line 214
Is there anywhere I can turn off the Brute Force option via FTP?
I updated to the latest version and activated the “Brute Force” option and changed the wp-login.php just “login”. Now I can no longer log in.