Plugins vulnerability as medium severity?

  • Resolved luizbress777

    (@luizbress777)


    1 year, 8 months ago


    I’m having a problem when wordfence performs a scan and finds a plugin that is outdated and with a known vulnerability, it identifies it as medium severity and does not accuse the vulnerability. I would like to know if this is an error or is it because I use the free version. I tested with two different plugins with the same problem. Thank you for your attention.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support WFAdam

    (@wfadam)

    Hello @luizbress777 and thanks for reaching out to us!

    Can you send a diagnostic report to wftest @ wordfence . com? You can find the link to do so at the top of the Wordfence > Tools > Diagnostics page. Then click on “Send Report by Email”. Please add your forum username where indicated and respond here after you have sent it.


    NOTE: It should look as follows – Screenshot of Tools > Diagnostic > Send by Email

    Thanks again!

    Thread Starter luizbress777

    (@luizbress777)

    had rolled back the Header Footer Code Manager plugins to version 1.1.33 and in version 1.1.34 a vulnerability was detected and notified on the wordfance website “https://www.wordfence.com/threat-intel/vulnerabilities/ wordpress-plugins/header-footer-code-manager/header-footer-code-manager-1134-cross-site-request-forgery-via-process-bulk-action” but when run the scan it classifies only as media severity without indicating the vulnerability in question

    ícone "Verificada pela comunidade"


Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Plugins vulnerability as medium severity?’ is closed to new replies.