MainWP Child 4

To plugin page VDP

WordPress MainWP Child Plugin <= 4.1.7.1 is vulnerable to SQL Injection

Patch within 30 days Low priority

Not known to be exploited Report an attack

4.7

Medium severity CVSS 3.1 score

Patchstack is the official security point of contact for this software.

Enable Protection

Patchstack is the official security point of contact for WordPress MainWP Child plugin.

Patchstack Professional users are protected since 09.12.2022

Enable Protection

Solution

Update to fix

Update the WordPress MainWP Child plugin to the latest available version (at least 4.1.8).

JrXnm discovered and reported this SQL Injection vulnerability in WordPress MainWP Child Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information. This vulnerability has been fixed in version 4.1.8.

Other vulnerabilities in this plugin

0 present

4 patched

View all