WordPress.org

asplash
(@asplash)

1 year, 2 months ago

Please can you tell me how to fix this: Wordfence found the following new issues on my website

Critical Problems:

* The Plugin “OSM” has a security vulnerability.

Vulnerability Severity: 6.4/10.0 (Medium) Vulnerability Information
https://wordpress.org/plugins/osm/#developers

The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)

pracko
(@pracko)

1 year, 2 months ago
Yes, I’m also getting the same warning from WordFence. Hopefully an update for this plugin is coming soon.
- This reply was modified 1 year, 2 months ago by pracko.
tripmaster7
(@tripmaster7)

1 year ago

Is the Plugin abandonned? No timeline after two month?

The warning I get every day from my security plugin make me nervous.
Andyt8
(@andyt8)

12 months ago
More precisely, there seems to be exactly two security risks.
1. WordPress OSM – OpenStreetMap plugin <= 6.01 – Contributor+ Stored XSS via Shortcode vulnerability
2. WordPress OSM – OpenStreetMap plugin <= 6.0.1 – Cross-Site Request Forgery (CSRF) vulnerability
According to the reports, the developer was informed but could not be reached. I hope the developer is in good health so far.

I have tried to contact them via social network or directly on the developer’s website in the last few days. So far I have not received any feedback.
Plugin Author MiKa
(@photoweblog)

9 months ago

Thanks for your info and feedback. We are going to invest some time to cover also these issues with an update of the plugin (WP OSM Plugin V6.1.) within November. Br, Michael

willemb2
(@willemb2)

8 months, 3 weeks ago

@photoweblog well, glad to see you back online, MiKa! We were afraid you had left this planet.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Critical Problems’ is closed to new replies.

In: Plugins
7 replies
6 participants
Last reply from: willemb2
Last activity: 8 months, 3 weeks ago
Status: not resolved