Welcome to GPLDL - we are still beta - please report any bugs via the contact form.

GPLDLGPLDL
GPLDL
Download the most popular GPL licensed Premium WordPress Themes & Plugins and WooCommerce Extensions for FREE!
  • Blog
    • Blog Articles
    • Latest Updates & Additions
  • Repository
    • Full Repository
    • Premium WordPress Themes
    • Premium WordPress Plugins
    • Premium WooCommerce Extensions
    • Special Gifts for Premium Members
    • Tutorials
  • Forum
  • Free Membership
  • Donations
  • My GPLDL Account
  • Sign In
Menu back  

YITH-Chat is a big security risk

  • This topic has 0 replies, 1 voice, and was last updated 2 years, 9 months ago by Penny Dreadful.
Viewing 1 post (of 1 total)
  • Author
    Posts
  • July 9, 2018 at 3:17 pm #20192
    Penny Dreadful
    Participant

    Just got a notification from Google regarding the YITH Chat plugin:

    We’ve detected the following issue(s) with your security rules:

    any user can read your entire database

    any user can write to your entire database

    Without strong security rules, anyone who has the address of your database can read/write to it, leaving your data vulnerable to attackers stealing, modifying or deleting data as well as creating costly operations.

    INSECURE RULES
    YITH Live Chat Plugin
    Database
    yith-live-chat-plugin

    I uninstalled this plugin immediately.

  • Author
    Posts
Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.
Log In
Search the Repository
We reward your Donations!
We need your Donation to maintain and grow the GPLDL WordPress Repository - and we reward your generosity with Premium Memberships allowing you to download even more files.

Learn more about donations & rewards...
News from our blog
  • How to get the MailPoet Premium Newsletter WordPress Plugin for free forever?
    January 22, 2017
  • How to remove the license code check from the WP-Rocket WordPress Plugin
    January 2, 2017
  • How to remove the WooThemes Updater Plugin notification from your WordPress Admin Dashboard
    May 28, 2016
Latest Updates & Additions
  • GPLDL News: 107 Updates & Additions today – Download 2344 Premium WordPress items!
    April 11, 2021
  • GPLDL News: 170 Updates & Additions today – Download 2329 Premium WordPress items!
    April 6, 2021
  • GPLDL News: 111 Updates & Additions today – Download 2331 Premium WordPress items!
    March 28, 2021
Tags
Admin Area automatic Backend code command display Download Drupal edit Extension fork forked functions.php get rid of GPL Guide hide hoot HowTo Instructions license Magento nag-screen nagscreen notification null nulled off Plugin Premium remove serial switch theme true tutorial Update Updater usage WooCommerce WooThemes wordpress WP-Media WP-Rocket
Welcome to GPLDL!
scr02We love innovation and we believe in free software!

That's why we strive to make the world's best Premium WordPress Themes & Plugins and WooCommerce Extensions & Themes available for everyone!

Find us on:

FacebookTwitterGoogle+RssPinterest
Latest Blog Posts
  • How to get the MailPoet Premium Newsletter WordPress Plugin for free forever?
    January 22, 2017
  • How to remove the license code check from the WP-Rocket WordPress Plugin
    January 2, 2017
  • How to remove the WooThemes Updater Plugin notification from your WordPress Admin Dashboard
    May 28, 2016
Latest Updates & Additions
  • GPLDL News: 107 Updates & Additions today – Download 2344 Premium WordPress items!
    April 11, 2021
  • GPLDL News: 170 Updates & Additions today – Download 2329 Premium WordPress items!
    April 6, 2021
  • GPLDL News: 111 Updates & Additions today – Download 2331 Premium WordPress items!
    March 28, 2021
About GPLDL
  • About GPLDL
  • F.A.Q.
  • Terms of Service
  • Privacy Policy
  • Contact
GPLDL - all Rights reserved.
  • About GPLDL
  • F.A.Q.
  • Terms of Service
  • Privacy Policy
  • Contact
  • Sign In
GPLDL Widget Menu