Embedpress bootstrap security issue

  • Resolved enrichi

    (@enrichi)


    3 months, 3 weeks ago

    Hello, I hope I’m posting this in the right section of the forum.

    I have a problem with the free EmbedPress plugin. My hosting provider reported a security issue with a file in the plugin. They flagged it as malicious, but it has not been quarantined in my cpanel.

    The file in question is: /public_html/wp-content/plugins/embedpress/assets/js/vendor/bootstrap/bootstrap.min.js

    The virus signature is:SecuriteInfo.com.End-Of-Life-found-in-Bootstrap

    How can I fix it? Other people who assisted me pointed out that it’s an outdated version of Bootstrap. They flag it as security vulnerability but not as a malware.

    I have already updated the EmbedPress plugin to its latest version, which is 4.4.2.

    What should I do to fix it?

    Thank you

Viewing 6 replies – 1 through 6 (of 6 total)
  • Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months, 3 weeks ago

    Hello @enrichi ,

    Thanks for reaching out to us

    That does seem strange. I’ve forwarded your query to the EmbedPress development team for further investigation and will update you as soon as I have more information.

    In the meantime, could you please try clearing your server caches and check again?

    Thank you for your patience!

    Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months, 3 weeks ago

    Hi @enrichi ,
    Greetings. Sorry for any inconvenience that you faced.

    We’ve recently made some updates that address this problem. Could you please try the updated development version by downloading it here: https://d.pr/f/USC2W5

    Kindly check it and let me know how it goes—your feedback is valuable in helping us ensure everything is working as expected.

    Thank you!

    Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months, 3 weeks ago

    HI @enrichi ,

    Greetings! Hope you’re doing well.

    We haven’t heard back from you since our last response. Could you please provide an update when you have a moment? This will help us assist you more effectively and work toward a quick resolution.

    We look forward to your reply.
    Thank you!

    Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months, 2 weeks ago

    Hi @enrichi ,

    Just following up on our previous messages regarding the Bootstrap file flagged by your hosting provider.

    As mentioned earlier, we’ve released an updated development version of EmbedPress that addresses the reported issue. You can download it here for testing: Download Dev Version. Please install this version and check if the security flag still appears. Also, don’t forget to clear any server or plugin caches before checking again.

    Looking forward to hearing back from you!
    Thanks!

    Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months, 1 week ago

    Hi @enrichi ,

    Hope you’re doing well!

    We’ve now released a new version that includes the fix for your issue. Please update to this latest version and let us know if it resolves the problem. Also, don’t forget to clear any server or plugin caches before checking again.

    Looking forward to hearing back from you!
    Thanks!

    Plugin Support Ashikur Rahman

    (@ashikurwp)

    3 months ago

    Hello @enrichi,

    We haven’t received a response since our last reply, so we’re assuming the issue has been resolved.

    We’ll proceed to close this topic for now. You’re always welcome to reopen it or start a new one if you have any further questions or concerns.

    Best regards,

Viewing 6 replies – 1 through 6 (of 6 total)

You must be logged in to reply to this topic.