https://www.pluginvulnerabilities.com/2017/09/22/php-object-injection-vulnerability-in-ds-downloadlist/

For the second time through our proactive monitoring of changes in WordPress plugins for serious vulnerabilities we have found a vulnerability not just as it is added to a plugin, but as the plugin was introduced into the Plugin Directory.

There is a manual review done of plugins before they are approved for the Plugin Directory and that appears to

Share This