Really Simple SSL is throwing a "vulnerability" alert for wpDataTables:
"The wpDataTables plugin for WordPress has a security vulnerability that allows attackers to access sensitive information from the database. This vulnerability is due to a lack of proper protection on the ‘id_key’ parameter in the wdt_delete_table_row action. It affects all versions up to and including 6.3.1. Please note that this vulnerability only affects the premium version of the plugin."
Our developers fixed that issue in the newer versions.
Can you please update your Plugin to the latest version 6.5, then check again, you should no longer be seeing that alert.
If you require assistance/advice what is the best way to update it, here is our guide.
The most important step is to check this option;
In the main plugin settings/'Prevent deleting tables in database'.
When you have that enabled, it means that all your tables, settings and charts will remain safe in your WordPress Database, so you can safely update the plugin.
If you activated the purchase code in wpDataTables Settings/Activation, the update should be offered in the Plugins section. On some WordPress installations, you need to deactivate the plugin first in order to see the update offered, so please try that.
If that doesn't work, try going through Dashboard/Updates. See if you can update the plugin through there, and if that doesn't work either, you can follow the manual update procedures from this Guide :
Really Simple SSL is throwing a "vulnerability" alert for wpDataTables:
"The wpDataTables plugin for WordPress has a security vulnerability that allows attackers to access sensitive information from the database. This vulnerability is due to a lack of proper protection on the ‘id_key’ parameter in the wdt_delete_table_row action. It affects all versions up to and including 6.3.1. Please note that this vulnerability only affects the premium version of the plugin."
Has this issue been addressed?
Link to info:
https://really-simple-ssl.com/vulnerability/49b995f8-baa3-4b4c-855b-a1267a237e3f/
Thank you!
D.J.
Hi David,
Our developers fixed that issue in the newer versions.
Can you please update your Plugin to the latest version 6.5, then check again, you should no longer be seeing that alert.
If you require assistance/advice what is the best way to update it, here is our guide.
The most important step is to check this option;
In the main plugin settings/'Prevent deleting tables in database'.
When you have that enabled, it means that all your tables, settings and charts will remain safe in your WordPress Database, so you can safely update the plugin.
If you activated the purchase code in wpDataTables Settings/Activation, the update should be offered in the Plugins section. On some WordPress installations, you need to deactivate the plugin first in order to see the update offered, so please try that.
If that doesn't work, try going through Dashboard/Updates. See if you can update the plugin through there, and if that doesn't work either, you can follow the manual update procedures from this Guide :
Updating the plugin to the latest version
Let me know how it goes.
Kind Regards,
Miloš Jovanović
[email protected]
Rate my support
wpDataTables: FAQ | Facebook | Twitter | Instagram | Front-end and back-end demo | Docs
Amelia: FAQ | Facebook | Twitter | Instagram | Amelia demo sites | Docs | Discord Community
You can try wpDataTables add-ons before purchasing on these sandbox sites:
Powerful Filters | Gravity Forms Integration for wpDataTables | Formidable Forms Integration for wpDataTables | Master-Detail Tables