Wordfence security issue in 1.4

  • Hi,
    I just updated to Innofit 1.4 and decided to run a Wordfence scan afterwards. The scan found two altered files
    wp-content/themes/innofit/template/template-blog-right-sidebar.php
    and
    wp-content/themes/innofit/template/template-blog-full-width.php

    The change I’m concerned about occurred in line 10 in each file.
    <div class="container<?php echo esc_html(innofit_blog_post_container());?>">,
    where the esc_html call was removed, which I guess could facilitate something like XSS.
    Should I worry about this ?

Viewing 1 replies (of 1 total)

  • Hi
    Thanks for contacting to us.
    There is no need to worry about that.
    Every thing is well.
    If you have any trouble, feel free to contact us.

    Thanks
    Akhilesh

Viewing 1 replies (of 1 total)
  • The topic ‘Wordfence security issue in 1.4’ is closed to new replies.