Vulnerability – How fast til we can get a patch?

Viewing 2 replies - 1 through 2 (of 2 total)

  • Seeing in the changelog the number of security vulnerabilities discovered in the latest versions is clearly not reassuring.

    Plugin Support Jawad Ahmed

    (@jawada)

    Hi @wigglepit & @emielb

    Thank you for reaching out and bringing this to our attention. Wordfence is currently flagging the feature related to exporting and importing user lists. While we work on a long-term solution to ensure seamless export of subscription data, we have implemented measures in our most recent versions to enhance security. These include requiring verification codes for both imports and exports, as well as encrypting downloaded and uploaded data.

    Additionally, you can mitigate this issue by restricting plugin access to administrators only for subscription exports. If this feature is available to backend users, limiting access should help prevent further complications.

    We sincerely appreciate your understanding and patience as we actively work towards a comprehensive resolution.’

    Thank you

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.