Kadence Central – Site Management, Backups, Security, and Reporting

Vulnerabilities 9Slug ithemes-syncLatest version 4.0.1WordPress.org →

Minimum safe version

3.2.9

Update to 3.2.9 or later to address 9 fixable vulnerabilities

Latest available4.0.1
N/A
< 3.0.1

Solid Central &lt; 3.0.1 - Stored Cross-Site Scripting via packages

WPScan
N/A
2023-11-09< 3.0.1

WordPress iThemes Sync Plugin < 3.0.1 is vulnerable to Cross Site Scripting (XSS)

Patchstack
N/A
2023-11-07< 3.0.1

Solid Central <= 3.0.0 - Stored Cross-Site Scripting via packages

Wordfence
N/A
2023-08-25< 2.1.14

iThemes Sync <= 2.1.13 - Cross-Site Request Forgery and Missing Authorization via 'hide_authenticate_notice'

Wordfence
N/A
< 2.0.18

iThemes Sync &lt;= 2.0.17 - Insufficient Secure Key Validation

WPScan
N/A
2019-10-09< 2.0.18

iThemes Sync <= 2.0.17 - Authentication Bypass

Wordfence
N/A
2019-10-10< 2.0.18

WordPress iThemes Sync plugin <= 2.0.17 - Insufficient Secure Key Validation vulnerability

Patchstack