Jigoshop vulnerability

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Jigoshop Support – Marcin

    (@azrielnefezen)

    Hi 9line,
    Version 1.8 is outdated for almost 2 years now.
    We recommend using jigoshop 1.17.9.
    Regards,
    Marcin

    Thread Starter 9line

    (@9line)

    Hi Marcin,

    The site is currently running jigoshop 1.17.9, it appears the the vulnerability that was detected in version 1.8 has never been patched.

    Thanks,

    Plugin Author Jigoshop Support – Marcin

    (@azrielnefezen)

    Hi 9line,
    Sorry it took me a while – if you want to fix it yourself you might want to insert the following :

    if ( !defined('ABSPATH') ){
 	die("Not to be accessed directly");
 }

    to the files listed here :
    https://osvdb.org/show/osvdb/99485

    We’ll include this in the next update ??
    Regards and thanks,
    Marcin

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Jigoshop vulnerability’ is closed to new replies.