Security Issue – World writeable directories

  • Resolved dmartec

    (@dmartec)


    3 weeks, 1 day ago

    Your plugin is showing security issues for world writeable directories in various locations

    They are set with 777 permissions and should be 755 to be more secure

    Examples:

    /public_html/wp-content/uploads/complianz/snapshots (most recent)

    /public_html/wp-content/plugins/complianz-gdpr/assets/vendor/mpdf/mpdf/tmp
    /public_html/wp-content/plugins/complianz-gdpr/assets/vendor/mpdf/mpdf/tmp/mpdf
    /public_html/wp-content/plugins/complianz-gdpr/assets/vendor/mpdf/mpdf/tmp/mpdf/ttfontdata

    Can you address this and ensure no world writeable directories are present?

Viewing 1 replies (of 1 total)
  • Plugin Support antoiub

    (@antoiub)

    Hello @dmartec ,

    Thanks for reaching out.

    This issue has been addressed in our latest version, 7.1.4. You can safely delete those folders if they’re still present. The assets/vendor/mpdf/mpdf folder has been replaced by uploads/complianz/snapshots/tmp, ensuring no files are stored.

    I hope this helps.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.