Security Risk!!

  • kwd

    (@kwd)


    1 month ago

    I host at WPEngine and its showing your plugin has a security rick. Says this:

    Email Verification for WooCommerce – Active

    Version 2.8.10

    Security risk

    • Security risk:?sqli.?The plugin contains a vulnerability wherein unauthenticated visitors could inject SQL statements into WordPress. SQL injection could allow an attacker to gain control of your site.

    Severity: high

    Fixed in:?no fix yet

    You might want to check into this because I uninstalled it. Once people see this, they should uninstall it too until you get it fixed.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Abd Hindi

    (@abdhindi97)

    Hi kwd,

    Thank you for your feedback! We truly appreciate your interest in the plugin.

    The development team is actively working on resolving this issue, and we expect to release a new update soon.

    Thank you for your time and cooperation.

    Best regards.

    Plugin Contributor Pablo Pacheco

    (@karzin)

    Hi @kwd ,

    The most recent version (2.9.0) is ok. Please, update the plugin and let us know if you notice something.

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this review.