-
Posts
-
Hello
just by chance, I found out that up to version 4.8.3 there is a Cross Site Scripting vulnerability
We spent months with a system vulnerability just because we did not know
I suggest that, in cases like this, you should take upon yourself very seriously the duty to inform all the community of Enfold users, by email for example because you should have all the email of those who have purchase it
Best regards
MauroHi Mauro,
We are not aware of any such problems in any versions of Enfold, could you please try to give us some more details of the problem?
Best regards,
Rikardplease see https://www.ecosia.org/search?q=enfold%204.8.3%20Cross%20Site%20Scripting%20vulnerability%20
Best regards,
MauroHi,
Thank you for the info.
This has been reported by the actual exploit author before and we are now trying to confirm if a patch has already been added in the latest version of the theme. We will report back once we have more info.
// https://kriesi.at/support/topic/possible-xss-vulnerability-enfold-theme/
Best regards,
IsmaelHey Mauro,
Thanks for contacting us!
Fix was already included however we have not sent out a newsletter. We will do so in case something similar happens in future :)
Regards,
Yigit
- You must be logged in to reply to this topic.