Log out
Get PRO

Latest

Input validation vulnerability in Classic Editor and Classic Widgets 1.2.5

  • Severity: medium-risk
  • Status: Fixed
  • Publication: March 3, 2023

The Classic Editor and Classic Widgets plugin for WordPress has a security flaw in versions up to 1.2.5 that could allow unauthenticated attackers to change the settings of the plugin. This is because of lacking or incorrect safety checks on the render_settings_page function. This means that if an attacker can get a website administrator to click on a link

Detected in:

Classic Editor and Classic Widgets fixed vulnerable versions: >= * <= 1.2.5

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)

Wordpress Linkedin Github

Get Started

About

Popular articles