WP Free SSL

Vulnerabilities 6Slug wp-free-sslLatest version 1.2.8WordPress.org →

Minimum safe version

1.2.8

Update to 1.2.8 or later to address 6 fixable vulnerabilities

Latest available1.2.8 ✓

Medium 6.3

2024-10-16< 1.2.7

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

Medium 4.3

2024-11-01< 1.2.8

CVE-2024-44020

CVE Patchstack Wordfence

N/A

2023-07-18< 1.2.6

WordPress WP Free SSL – Free SSL Certificate for WordPress and force HTTPS Plugin < 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE

N/A

2022-03-04< 1.2.7

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A

2022-02-28< 1.2.7

WordPress WP Free SSL – Free SSL Certificate for WordPress and force HTTPS plugin < 1.2.7 - Sensitive Information Disclosure vulnerability

Patchstack

N/A

2022-02-28< 1.2.7

WordPress WP Free SSL – Free SSL Certificate for WordPress and force HTTPS plugin < 1.2.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack