Tagged: ,

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • September 10, 2021 at 12:57 pm #1320396
    blende64

    Hi

    We use Enfold on quite a few websites. About 20 websites are affected by the vulnerability CVE-2021-24719. Is there any way that I can patch the vulnerability manually without having to update Enfold on all sites. Of course, an update would be the cleanest solution, but we don’t have enough resources for that at the moment.

    Thanks Jeannette

    September 11, 2021 at 11:53 am #1320505
    Yigit

    Hey Jeannette,

    Thanks for contacting us!

    Please go to /enfold/framework/php/function-set-avia-frontend.php file and search
    return $url;
    and add following right above that line
    $url = esc_url( $url );

    This was already added in Enfold 4.8.4, so please keep the theme updates on your installations. Currently the latest version is 4.8.6.2 :)

    Regards,
    Yigit

    September 14, 2021 at 9:01 am #1320858
    blende64

    Hi Yigit

    Perfect, thank you very much.

    Kind regards
    Jeannette

    September 14, 2021 at 10:55 am #1320872
    Yigit

    Hi,

    You are welcome! Let us know if you have any other questions and enjoy the rest of your day :)

    Best regards,
    Yigit

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • The topic ‘Manually fix CVE-2021-24719’ is closed to new replies.