1.23.3 still reported as vulnerable ?

I don’t know if there is a relationship to the Patchstack lapse, but what I’m experiencing in ManageWP sounds strikingly parallel. I use ManageWP to manage 17 of my websites, which all use UpdraftPlus. And all have been marked with a security alert since just before 1.23.3 was released. After I read that 1.23.3 corrects a vulnerability in the previous version, I was surprised the ManageWP warnings had not vanished after the update to 1.23.3. So I contacted ManageWP Support – they say their developers are working on it, but it’s now a week since they told me this. I wonder if ManageWP is also relying on Patchstack or similar, and that’s why it’s taking them forever to correct this erroneous flagging of UpdraftPlus. Well, I just thought it could possibly be useful to report this to UpdraftPlus support.

Also had to disable the updraft plugin until the vulnerability message goes away from managewp.

Hi,

We have already reached to ManageWP about that and they have confirmed it is a false positive report and they’ll be releasing an update soon.

Thanks,
Bryle

Update : It took a while since this issue popped up until all came back to normal again, i.e. no more warnings on the 1.23.3 from my Site Security plugin as of sometimes today.

Good news! As of this morning (Mar 29), the erroneous security alerts for UpdraftPlus are no longer displaying in ManageWP. :-))

• This reply was modified 1 year, 8 months ago by susantau.

Great, thanks for the update!