[ad_1]
There is an error with the vulnerability numbers (corrected some time ago as far as I know). 9.6.2 was the version number of the paid plugin, now at 9.10.2.
The 9.4.5.1 is the most recent version for the free plugin, and it doesn’t have the issue you mentioned. This was fix some time ago already.
It may be worth you contacting WPScan to advise them of the false positive:
I can confirm you are correct – it is miss reporting from WP Scan, I have asked them to look into it, as you can see from the mitre site, it agrees that it was resolved after 9.3.6 in the free version: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2584
- This reply was modified 3 minutes ago by . Reason: Adding resolved