This topic has 7 replies, 2 voices, and was last updated 3 years, 2 months ago ago by Olga Barlow
Hi!
I hope all is well.
Got an email this morning say need to update every single xstore version due to a security vulnerability in a previous versions.
We have 41 purchases of the xstore and while its ok to update the majority of them, some are quite old versions which just aren’t possible to update to the latest version.
Do you know what code needs to be change or what the problem was so can amend the code ourselves on some older versions?
Many thanks
Hello,
We are trying to clarify this situation with Envato support. We did not get any notification from Envato about a security vulnerability in the XStore WordPress Theme and don’t understand why did they send the mentioned email. Once we get any response from the Envato team I’ll notify you.
Regards
Hi Olga,
Many thanks for the reply!
Ok no worries sounds good 🙂 maybe just an error on Envatos part then.
Thanks again for help as always, much appreciated.
Scott
Hello,
Thank you for using our theme and for your patience. I’ll keep you in touch.
Regards
Hello,
We got a reply from the Envato team https://prnt.sc/1u246er
Vulnerability is related to WooCommerce Dynamic Pricing & Discounts plugin, not to the theme code itself. So, update the mentioned plugin to the latest version if you installed that.
Theme code does not have any security holes.
Regards
Hi Olga.
Oh makes sense! forgot about that, updated that a few weeks ago now, only use on a few sites so all good!
Many thanks for your help with this, is much appreciated as always 🙂
Have a nice day!
Scott
Hello,
You are welcome.
Regards
Tagged: envato, market, notification, security, themes, woocommerce, wordpress
The issue related to '‘Envato Market Security Notice Email’' has been successfully resolved, and the topic is now closed for further responses