Vulnerabilities has discovered - SQL Injection #57
Comments
|
@rajankarmakar thanks for the feedback. Personaly, I think there is some exaggeration here. Of course it is possible to change things, but for this an administrative access is needed and if this is in the possession of someone else, the plugin itself is not the problem! @hijiriworld have you found the time to take a deeper look into the PR54. Would love to fix the security issues and use this PR as starting point. |
|
@timohubois Can you say anything about the timing of the fix or if it will be fixed by the next release? |
|
Would really love to fix it and currently I’m waiting for feedback from @hijiriworld, to get a better starting point. |
|
#54 is merged. Will start to work on this asap. |
|
Created a branch with some changes: https://github.com/hijiriworld/intuitive-custom-post-order/pull/ |
Vulnerabilities have discovered that the currently installed version of the Intuitive Custom Post Order plugin has known security vulnerabilities. See more.
The text was updated successfully, but these errors were encountered: