Replies: 0
Hi there,
i got this email from my host notifying me that your plugin has a security issue. are you able to fix this? it says this:
“The plugins and themes use an insecure version of the Freemius Framework, which is lacking CSRF and/or authorisation in some of its AJAX actions. As a result, any authenticated users, such as subscriber could access the debug logs. Unauthenticated attackers could also make a logged in admin toggle the debug mode via a CSRF attack.”
Please let me know if this can be fixed. thank you so much