Wednesday, 24-May-2023. New version 4.19.2 of WordPress File Upload plugin has just been released.
This is a regular update that introduces some code improvements and security fixes, as described below:
- Code improvements to protect against XSS attacks, after some issues detected in plugin’s Settings.
- Code improvements to protect against directory traversal attacks, after some issues detected in back-end File Browser.
- Permanent fix for compatibility with block themes.
Some days ago the plugin was audited by Wordfence security team. Wordfence is the top security solution for WordPress and one of their activities is to audit WordPress plugins for ensuring that they provide an adequate level of protection against hacking.
Wordfence detected some issues, which were immediately resolved and their fixes are included in the new version.
Please note that the plugin has been audited another three times in the past by security auditors. For this reason, it provides a very high level of protection, despite its large size and number of features. You can read a detailed description of the plugin’s security provisions in this article.
You can find more details in the Release Notes of the plugin’s support page.
Users can update to the latest version using the Update feature of the Plugins section of their Dashboard.
Iptanus team is constantly striving to make WordPress File Upload plugin more user friendly and more bug free, so it will continue issuing new releases.
For additional information or technical support, do not hesitate to contact us.
The Iptanus Team