Home › Forums › WoodMart support forum › Site vulnerabilities found Site vulnerabilities found This topic has 3 replies, 3 voices, and was last updated 1 year ago by Artem Temos. Viewing 4 posts - 1 through 4 (of 4 total) Author Posts May 5, 2023 at 2:37 pm #464761 woodsmartParticipant Hello there, my server is checking installations via WP Toolkit for issues. I received following: WordPress Woodmart Core plugin <= 1.0.36 – PHP Object Injection WordPress Woodmart Core plugin <= 1.0.36 – Privilege Escalation WordPress Woodmart theme <= 7.2.1 – Cross-Site Scripting (XSS) vulnerability WordPress Woodmart theme <= 7.2.1 – Broken Access Control vulnerability are you aware of those and can you address them in the next update? cheers, woodsmart May 5, 2023 at 4:28 pm #464790 Artem TemosKeymaster Hello, We have already fixed these issues in our 7.2.2 update. Please, update the theme and WoodMart core plugin to the latest version asap. Kind Regards May 5, 2023 at 5:03 pm #464799 stavom33Participant Hello. How can I install woodmart 7.2.2? My dashboard shows no update for the theme May 5, 2023 at 8:02 pm #464849 Artem TemosKeymaster Find an instruction about how to update our theme here https://xtemos.com/docs-topic/update-the-theme/ Author Posts Tagged: core plugin, issues, object injection, vulnerability Viewing 4 posts - 1 through 4 (of 4 total) You must be logged in to create new topics. Login / Register
.
.