Plugin <= 2.8.2 is vulnerable to SQL Injection

Viewing 8 replies - 1 through 8 (of 8 total)

  • I am also checking in on this…

    Paul

    (@paulschiretz)

    Hi, I made an attempt to fix that vulnerability and submitted a pull request on their git repository, hopefully someone sees it and fixes it in the next version….

    Cheers, Paul

    Thank you Paul! Hopefully, it gets checked and approved soon ??

    I hope so too, thanks Paul!

    Paul

    (@paulschiretz)

    Hi, i’m sorry to say this but i tried submitting a pull request, email them, write the devs on github… no response. I meanwhile developed my own solution suitable for my very limited use case. In short i moved on, but i left the pull request open in case there is some activity in the future.

    Still hope you get a proper fix for this!

    Cheers, Paul

    Plugin Author templateinvaders

    (@templateinvaders)

    We have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!

    A little too late – I already have removed this plugin from all of my sites and am no longer recommending it due to lack of support/updates ??

    Thank you so much @templateinvaders!

Viewing 8 replies - 1 through 8 (of 8 total)
  • You must be logged in to reply to this topic.