Site vulnerabilities found

This topic has 3 replies, 3 voices, and was last updated 2 years, 2 months ago by Artem Temos.

Viewing 4 posts - 1 through 4 (of 4 total)

Author

Posts
May 5, 2023 at 2:37 pm #464761

woodsmart
Participant

Hello there,

my server is checking installations via WP Toolkit for issues. I received following:

WordPress Woodmart Core plugin <= 1.0.36 – PHP Object Injection
WordPress Woodmart Core plugin <= 1.0.36 – Privilege Escalation
WordPress Woodmart theme <= 7.2.1 – Cross-Site Scripting (XSS) vulnerability
WordPress Woodmart theme <= 7.2.1 – Broken Access Control vulnerability

are you aware of those and can you address them in the next update?

cheers,
woodsmart

May 5, 2023 at 4:28 pm #464790

Artem Temos
Keymaster

Hello,

We have already fixed these issues in our 7.2.2 update. Please, update the theme and WoodMart core plugin to the latest version asap.

Kind Regards

May 5, 2023 at 5:03 pm #464799

stavom33
Participant

Hello. How can I install woodmart 7.2.2? My dashboard shows no update for the theme

May 5, 2023 at 8:02 pm #464849

Artem Temos
Keymaster

Find an instruction about how to update our theme here https://xtemos.com/docs-topic/update-the-theme/
Author

Posts

Tagged: core plugin, issues, object injection, vulnerability

Viewing 4 posts - 1 through 4 (of 4 total)

Sign in

No account yet?

Create an Account