Incorrect vulnerability report

Hello @galbaras,

Thanks for reaching out!

I tried installing the same plugin on my test site, however, I’m seeing the correct version number on the details screen: https://share.zight.com/p9uJpwNy, so the version mismatch you’re seeing (title showing 5.0.3) may be due to caching or an older copy of the data on your environment.

I can reproduce the second behavior: clicking the vulnerability details link does send you to the Patchstack search page instead of the specific vulnerability. However, this seems to be happening on the specific report only (see here).

Searching for this vulnerability on Patchstack database does show the report in the results, but opening that specific report redirects back to the search page. That may be due to that report’s page being edited or updated on Patchstack’s side.

For now, please monitor if the issue persists or occurs on other reports (we’ll also monitor on our side), and we’ll follow up for updates.

Thanks for the flag, and let me know how it goes on your end. 

Hi @galbaras,

I see. In that case, can you try following the transient-clearing steps here: https://solidwp.com/documentation/general-wp/learn-more/clearing-caches-and-transients-in-wordpress/#h-5-clear-wordpress-transients

Note that if you can temporarily use a transients manager plugin, there should be a listed transient for site scan that you can manually clear there.

Let me know how it goes.