WP-Filebase icon indicating copy to clipboard operation
WP-Filebase copied to clipboard

Published 20 hours ago verified publisher icon fl4p

Possible security flaw

Open yatishmadhav opened this issue 8 years ago • 5 comments

Hi Fabian

Please see log from a WPscan on the plugin ...

WP-Filebase Download Manager <= 0.2.9 - wpfb-ajax.php base Parameter SQL Injection Reference: [https://wpvulndb.com/vulnerabilities/6553] Reference: [https://secunia.com/advisories/45931/] Reference: [https://www.exploit-db.com/exploits/17808/]

Please advise when the update to that will be made?

Thanks

yatishmadhav avatar May 09 '16 11:05 yatishmadhav

Get the latest version here: https://github.com/f4bsch/WP-Filebase/archive/master.zip

fl4p avatar May 09 '16 15:05 fl4p

Thanks mate - so https://wordpress.org/plugins/wp-filebase/ has 3.4.4 - how frequently is that updated with this 3.4.5? I usually wait for the updates to show up in the WP console ... Appreciate it @f4bsch

I still feel so new to Wordpress even after over 2 years working on it! :D

yatishmadhav avatar May 11 '16 10:05 yatishmadhav

Hi there, Any idea on the above please? Thanks man

yatishmadhav avatar May 24 '16 07:05 yatishmadhav

Hey there - it is missing again from the WP repo? I am trying to understand if it dissappears off there because of updates? Or some other reason? Thanks in advance, Fabian

yatishmadhav avatar Jul 28 '16 11:07 yatishmadhav

Hey Fabian,,,,, Hope you are well? Please advise on the last comment? Thanks. Cheers

yatishmadhav avatar Nov 28 '16 06:11 yatishmadhav