September 18, 2024

Watch Out Wednesday – September 18, 2024

Plugin: YITH Custom Login Vulnerability: Reflected Cross-Site ScriptingPatched Version: 1.7.4Recommended Action: Update to version 1.7.4, or a newer patched version Plugin: WP Booking System – Booking Calendar Vulnerability: Reflected Cross-Site ScriptingPatched Version: 2.0.19.9Recommended Action: Update to version 2.0.19.9, or a newer patched version Plugin: Roles & Capabilities Vulnerability: Reflected Cross-Site ScriptingPatched Version: n/aRecommended Action: No […]

Watch Out Wednesday – September 18, 2024 Read More »

Watch Out Wednesday – September 18, 2024

Plugin: YITH Custom Login Vulnerability: Reflected Cross-Site ScriptingPatched Version: 1.7.4Recommended Action: Update to version 1.7.4, or a newer patched version Plugin: Roles & Capabilities Vulnerability: Reflected Cross-Site ScriptingPatched Version: n/aRecommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best

Watch Out Wednesday – September 18, 2024 Read More »

Watch Out Wednesday – September 18, 2024

Plugin: amCharts: Charts and Maps Vulnerability: Reflected Cross-Site Scripting via Cross-Site Request ForgeryPatched Version: 1.4.5Recommended Action: Update to version 1.4.5, or a newer patched version Plugin: LearnPress – WordPress LMS Plugin Vulnerability: Unauthenticated SQL Injection via ‘c_fields’Patched Version: 4.2.7.1Recommended Action: Update to version 4.2.7.1, or a newer patched version Plugin: LearnPress – WordPress LMS Plugin

Watch Out Wednesday – September 18, 2024 Read More »

Watch Out Wednesday – September 18, 2024

Plugin: amCharts: Charts and Maps Vulnerability: Reflected Cross-Site Scripting via Cross-Site Request ForgeryPatched Version: 1.4.5Recommended Action: Update to version 1.4.5, or a newer patched version Plugin: LearnPress – WordPress LMS Plugin Vulnerability: Unauthenticated SQL Injection via ‘c_fields’Patched Version: 4.2.7.1Recommended Action: Update to version 4.2.7.1, or a newer patched version Plugin: LearnPress – WordPress LMS Plugin

Watch Out Wednesday – September 18, 2024 Read More »