Is "Themify Portfolio Post" safe?

WordPress Plugin security and safety information.

Rating: Good (current version safe) Recommendations

Themify Portfolio Post: Plugin Details


Type: Plugin
Author: Themify
URL: https://wordpress.org/plugins/themify-portfolio-post/
Latest Version: 1.1.6

 

Themify Portfolio Post: Security Information


Insecure versions: Up To 1.1.5
Known since: 2020-12-07 14:30:00
Description: Stored XSS vulnerabilities in versions of the plugin before 1.1.6 allow low-privileged users (Contributor+) to inject arbitrary Javascript code or HTML in posts where the Themify Custom Panel is embedded.


 

Themify Portfolio Post: Safety Recommendations


We have rated Themify Portfolio Post as Good (current version safe) which means that we have found vulnerabilities in older versions.

We recommend that you only use the latest version of Themify Portfolio Post.

Themify Portfolio Post: Staying Up-to-date


Make sure your installation of Themify Portfolio Post is safe with the following free Jetpack services for WordPress sites:
  • Updates & Management
    Turn on auto-updates for Themify Portfolio Post or manage in bulk.
  • Prevent Infiltrations
    Automatic protection against brute force attacks and secure sign on.

Choose Your Plan

Themify Portfolio Post: Keeping Safe


If you're running a business, ecommerce, news, or other critical website, Jetpack also provides additional indispensable services:
  • Automated Backups
    Full backup of your entire site with unlimited storage space.
  • Restores & Migrations
    Restore or migrate your site from a backup with one click.
  • Security Scanning
    Regular, automated scans of your site for malware, threats, and hacks.
  • Expert Support
    Fast, priority support for any WordPress security issue.

Choose Your Plan

About this information


This WordPress security information is part of our security library and is brought to you by Jetpack as part of our committment to a safer WordPress experience.

If you have any questions, please do not hesitate to contact us.