XML External Entity injection vulnerability.

  • Resolved samisraeli

    (@samisraeli)


    4 years, 2 months ago

    Hi,

    We had a security check and they found XML External Entity injection vulnerability in your plugin.
    I read somewhere that there is version 1.8 that fixed the bug bit in www.remarpro.com the latest version is 1.12.

    How can I update to version 1.8?

    Sam

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator Yui

    (@fierevere)

    永子

    You are talking about old fixed bug, if its been fixed in 1.8
    then any older version (notably 1.12) already includes the fix.

    You dont need 1.8 which has been released at 02/25/2017
    and has only WordPress 4.7 compatability.
    Latter versions will work better on older and modern WP versions.

    Plugin Author Tobias B?thge

    (@tobiasbg)

    Hi,

    thanks for your post, and sorry for the trouble.

    Indeed, 1.12 is the latest version of TablePress. Note that this is “one point twelve” and not “one point one point two”, so it’s newer than TablePress 1.8 ??
    You should update to TablePress 1.12 here.

    Regards,
    Tobias

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘XML External Entity injection vulnerability.’ is closed to new replies.