View this email in your browser
Podcast Episode #7
Patchstack Weekly: WordPress Vulnerabilities & Cross-Site Request Forgery

Hi Coffigniez​, it's another week of Patchstack Weekly update, but first let's go over important vulnerabilities.

PS! You can find Patchstack Weekly from Spotify.
WP Import Export Lite

Vulnerability: Unauthenticated Sensitive Data Disclosure
Fixed in version: 3.9.16
Number of sites affected: 20,000+
CVSS 3.0 score: 7.5 (High - Can be exploited remotely without any authentication.)
WP Import Export premium

Vulnerability: Unauthenticated Sensitive Data Disclosure
Fixed in version: 3.9.16
Number of sites affected: N/A
CVSS 3.0 score: 7.5 (High - Can be exploited remotely without any authentication.)
If you are using any of the mentioned plugins, you need to update it to the latest version as soon as possible. Websites with Patchstack installed are protected from the security issues mentioned below.

You can find all the vulnerabilities from our vulnerability database
Weekly knowledge about CSRF

In this week's session, Robert will talk about how to protect against cross-site request forgery? ðŸ‘‡
Read & Listen The Episode
Always keep your plugins updated. If possible, enable automatic updates. You can enable automatic updates with Patchstack here

If you are not protecting your WordPress site against plugin vulnerabilities yet go and start for free here.

Are you on Facebook? Join the Patchstack community and be the first to hear about new feature updates, news, and announcements.
LinkedIn
Facebook
Twitter
Spotify
Copyright © 2022 Patchstack, All rights reserved.
You are receiving this email because you opted in via our website.

Our mailing address is:
Patchstack
Akadeemia 1
Forwardspace
Parnu 80011
Estonia

Add us to your address book


Want to change how you receive these emails?
You can update your preferences or unsubscribe from this list.