Does wordfence support/fix another plugin’s vulnerabilities?

  • Resolved halielambert

    (@halielambert)


    2 years, 9 months ago

    Hello, I’ve been using DW questions and answers free plugin since 2018. It is forum plugin to create website like stackoverflow, reddit etc. Unfortunately plugin’s free version was abandoned it’s been 3 years hasn’t been updated and we can’t afford to buy premium version, (Now we have financial crysis, budget fund is run out so far, we are going to purchase premium license of that plugin but this is for future plan, so we can’t have vulnerable plugin active for 1-2 years period before we make a purchase)

    I read on Reddit someone saying: outdated abandoned plugins/themes have incompatibilities and vulnerabilities so security plugin wordfence supports this and releases security patches for plugin/theme security holes.

    My question is: Is it right? Can I be calm because great plugin wordfence releases security patches for my vulnerable plugins? Does this patches fix my problem?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @halielambert, thanks for reaching out to us.

    Wordfence will look after your WordPress installation using its extensive database of vulnerabilities, bad IPs and signatures to detect exploitable plugins, known current “bad” IPs/hostnames, and malicious files. Rules updates are released weekly for the free version of Wordfence to assist with this.

    We exercise Responsible Disclosure when a vulnerability is found in another plugin, so will report the issue to the relevant developer only, allow them time to patch it and add a Wordfence firewall rule to help protect any of our customers with the vulnerable plugin installed in the mean time.

    You can also read more about what Wordfence protects you against and how to use it in our free learning center: https://www.wordfence.com/learn/

    Thanks,

    Peter.

    Thread Starter halielambert

    (@halielambert)

    Thank you

    Thread Starter halielambert

    (@halielambert)

    Thank you. I’ll check out pages you reffered.

    So does it means that, even abandoned plugin DW Question & Answer is safe and no harmful?

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Does wordfence support/fix another plugin’s vulnerabilities?’ is closed to new replies.