NinTechNet changelog.

May 19, 2020 NinjaFirewall (WP+/WP) v4.2.1 Fixed a bug introduced in version 4.2 where a user such as an editor could potentially be blocked while editing…

Posted on May 18, 2020
NinjaFirewall

Multiple XSS vulnerabilities fixed in WordPress Visual Composer plugin.

The Visual Composer plugin for WordPress (80,000+ active installations) fixed multiple stored XSS vulnerabilities affecting version 26.0 and below.

Posted on May 15, 2020
NinjaFirewall

Zero-day vulnerability fixed in WordPress Login/Signup Popup plugin.

The WordPress Login/Signup Popup plugin, which has 10,000+ active installations, fixed a zero-day vulnerability affecting version 1.4 and below.

Posted on May 7, 2020May 9, 2020
NinjaFirewall

Zero-Day Vulnerability Exploited in Elementor Pro.

The Elementor Pro plugin for WordPress is prone to a critical zero-day vulnerability affecting version 2.9.3 and below.

Posted on May 6, 2020May 6, 2020
NinjaFirewall

WordPress Elementor plugin fixed SVG XSS protection bypass vulnerability.

Elementor Page Builder (4+ million installations), was prone to a broken access control vulnerability affecting version 2.9.7 and below that could lead to stored XSS vulnerability via SVG image upload.