security vulnerability? | WordPress.org

eddierosenthal
(@eddierosenthal)

2 years, 8 months ago

all my sites (prolly 20 or more of them)

use enhanced text, and they all have

Critical Problems:

* The Plugin “Enhanced Text Widget” has a security vulnerability.

Vulnerability Severity: 4.3/10.0 (Medium) Vulnerability Information
https://wordpress.org/plugins/enhanced-text-widget/#developers

is there a fix?

They all have the latest WP.

The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)

Nick
(@d4d5bh6)

2 years, 8 months ago

Yes, we’re on it, will release a fix soon.

Plugin Author iClyde
(@iclyde)

2 years, 8 months ago

Solution released, please check it out @eddierosenthal @crzyhrse! 🙂
Thread Starter eddierosenthal
(@eddierosenthal)

2 years, 8 months ago
i still see in the latest version this warning i get –

Known VulnerabilitiesWordPress Enhanced Text Widget plugin <= 1.5.8 – Broken Access Control vulnerability

https://patchstack.com/database/vulnerability/enhanced-text-widget/wordpress-enhanced-text-widget-plugin-1-5-7-broken-access-control-vulnerability?_a_id=431
- This reply was modified 2 years, 8 months ago by Steven Stern (sterndata).
- This reply was modified 2 years, 8 months ago by eddierosenthal.
Thread Starter eddierosenthal
(@eddierosenthal)

2 years, 8 months ago

i don’t see how this could be labeled “Resolved”. As every day i get dozens of the warning from either WordFence of ithemes security plugin. I do hope sincerely this gets “Resolved”.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘security vulnerability?’ is closed to new replies.

7 replies
7 participants
Last reply from: eddierosenthal
Last activity: 2 years, 8 months ago
Status: not resolved