[zapykhan76]

I understand your concern about the XSS vulnerability. Zed from Cryout Creations did respond and confirmed that they’re aware of the issue. The fix will be rolled out in a future update, but since it’s considered a low-priority issue (according to the report), it’s not something they’re rushing to address. However, the update will improve the sanitization around the get_the_author() function.

If you’re not comfortable waiting, a good temporary fix could be manually sanitizing the input or reaching out to a developer for help. That way, you can reduce the risk in the short term.

Also, make sure you keep your WordPress version and plugins up to date, and continue to monitor any security alerts from tools like Jetpack or Wordfence. Hopefully, Cryout Creations will push out the update soon, but in the meantime, these steps should help minimize the threat.

Website: ssoids.com

[Author]

Posts