Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in MainWP Child – Securely Connects Sites to the MainWP WordPress Manager Dashboard 2.0.27

  • Severity: medium-risk
  • Status: Fixed
  • Publication: September 7, 2015

The MainWP Child plugin for WordPress has a security vulnerability that can be exploited by attackers to inject malicious web scripts into a website. This can cause the scripts to run in the victim’s browser without their knowledge. The vulnerability exists in all versions of the plugin up to, and including, version 2.0.27 and is caused by the plugin not properly sanitizing and escaping user input.

Detected in:

MainWP Child – Securely Connects Sites to the MainWP WordPress Manager Dashboard fixed vulnerable versions: >= * <= 2.0.27
MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.