Yesterday a crucial security flaw was discovered in the Gravity Forms Directory plugin and fixed immediately. Version 3.5.4.3 was released and takes care of the issue. __Please update immediately__.
For the security of the users still running older versions, we can’t go into what the flaw was, but it had to do with viewing Gravity Form entries without permission, and was severe.
Gravity Forms Directory versions affected: 2.4.1 – 3.5.4.2. Version 3.5.4.3. fixes the problem
The flaw was discovered by Baruch Moskovits. We released a patch within one hour of the discovery.
1 reply on “Gravity Forms Directory Security Update”
WHY IS NO ONE MONITORING THE FORUMS – https://wordpress.org/plugins/infusionsoft – PEOPLE NEED ANSWERS – WE ARE HAVING SIMILAR ISSUES AND NEED HELP – IS SAYS IT’S A GRAVITY FORMS ISSUE – GF SAYS IT’S A YOU ISSUE AND YOU GIVE NO HELP!!! SOMEBODY PLEASE GET ON THE FORUM AND HELP – 0 OF TWELVE ISSUES HAVE BEEN RESOLVED IN MONTHS – IT’S RIDICULOUS AND YET WE’VE PAID FOR THE PLUGIN!!!!!-