Paul Gilzow

Programmer Analyst, University of Missouri@gilzowhttp://missouri.edu/
Web application security and accessibility evangelist. Software instructor. Conference lecturer and presenter.

2 Replies to “Vulnerable WordPress Plugins Report for the Week of January 12, 2018”

  1. Can we subscribe to the security blog posts somehow? And is there a master list of these weekly vulnerabilities so we can see which have been patched from week to week and which are still outstanding?

  2. is there a master list of these weekly vulnerabilities

    Sort of. I do have a list that is a compilation of all the weeks put together. I use it mainly to make sure that I’m not duplicating a disclosure from week-to-week. I also use it to see if any of the plugins have had numerous disclosures over a short amount of time.

    so we can see which have been patched from week to week and which are still outstanding

    And that’s why I have yet to share the list. I started to go down the path of going back each week and looking up ones that were unfixed and see if they had been patched, but it takes a lot of time, an amount of time I just don’t have. However, if someone would like to volunteer to go through previous disclosures, I’d be more than happy to share editor access. We could then add that information as part of the weekly list: # disclosures, # unfixed, # fixed from previous weeks. That would be awesome.

Leave a Reply

Your email address will not be published. Required fields are marked *