Vulnerable Plugin Security concern re : AGCA Custom ADMIN & Login V 7.2.2.

Hi,

Can you please send all details about that report at [email protected], we’ll need to check what is it about, might be already addressed.

Thanks!

Hi, and thank you for your reply. The reason I am recontacting you is because I sent all details of security vulnerability for AGCA – Custom Dashboard to [email protected] 2 days ago and have NOT received any reply. I am starting to get very concerned as now have received the same security issue regarding your plugin for a number of my websites through Solid WP. (see below)

Vulnerabilities

WordPress AGCA – Custom Dashboard & Login Page plugin <= 7.2.2 – Server Side Request Forgery (SSRF) vulnerability

MEDIUM rating

As I said previously, I need to know urgently when the new version or patch will be ready to fi this issue. You only need to paste the above into Google and this security concern will come up everywhere from all the legitimate security company’s.

Please urgently advise what is happening as no one has bothered to reply from [email protected]

Thank you

Dear user,

We are currently investigating this issue and will get back to you as soon as possible. In case you have strong concerns about the current state of your site, we kindly suggest you to temporarily deactivate the plugin until we have more information about it.

Thanks for your understanding, and rest assured this will be resolved soon.

Kind regards
Cusmin team

Up+

I am also following this critical issue!

Best regards

The fix is applied in 7.2.4, but we are waiting now for the verification to make this official.
Thanks for your patience.

It’s now official, the fix has been verified, so please update to the latest 7.2.4.

It is good to hear. Thank you very much ??