Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • September 18, 2014 at 5:28 am #320876
    marceloamartins

    I believe I may have found some vulnerabilities. I’m trying to figure if these vulnerabilities are related to Enfold, WordPress or the hosting server.

    September 18, 2014 at 8:13 am #320960
    Ismael

    Hey Marcelo!

    Thank you for using Enfold.

    The errors are not coming from the theme. I’m not sure how we can help you with it. What is the scanning tool that you’re using?

    Best regards,
    Ismael

    September 19, 2014 at 3:32 am #321631
    marceloamartins

    I’m using the latest version of Acunetix. But I’ll use other tools too.
    I’m trying to mitigate these vulnerabilities and I thought Enfold had some security issues.
    Is Avia a component used by Enfold? This is my first time using WordPress.

    Regards,
    Marcelo

    September 19, 2014 at 4:24 am #321643
    Devin

    Hi!

    Yep, all of Kriesi’s code is under his Avia umbrella. The contact form flags seem to be false flagging the form input which checks for any issues server side and isn’t left open for xss attacks.

    The others are flagging WordPress core so I’m guessing the tool is overzealous in what it considers a vulnerability or maybe its pointing out *potential* issues rather than definite ones.

    Cheers!
    Devin

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.