This version contains a known vulnerability CVE-2023-1809. Updating the plugin

  • Resolved EGS1

    (@egs1)


    7 months, 2 weeks ago

    I’ve got a few clients who installed this plugin on their websites …. but the security I provide has just put this notice on the plugin:

    ?“This version contains a known vulnerability CVE-2023-1809. Updating the plugin to a version higher than 6.3.0 is strongly recommended. The full report is?here.”

    From what I can see, you don’t have a version 6.3.0 BUT …. the linked page is full of notices about the issue.

    What is currently being done to address this vulnerability? I can’t leave these people hanging long as I’m the one who will be stuck fixing issues that arise from having a vulnerability on their sites.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Shahjada

    (@codename065)

    v6 is a pro version, the latest pro version is 6.5.5, please update to that version where we have fixed the issue. Also, we have fixed the issue in wp.org version 3.2.98. Please check the change log.

    Thread Starter EGS1

    (@egs1)

    Thank you. I’ve updated and have also contacted the CleanTalk team so they can look into their end because it’s obviously looking for the pro version release number instead of the free version release number.

    Thread Starter EGS1

    (@egs1)

    CleanTalk has also corrected their system so that it’s not looking for the pro number on a free version.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘This version contains a known vulnerability CVE-2023-1809. Updating the plugin’ is closed to new replies.