imunify360 really works?

[ad_1]

 am checking imunify360 WAF rules changelog, there's an update on 10 sep 2024:

Added rule id: 77350502 – IM360 WAF: Broken Access Control in WordPress LearnPress Plugin <= 4.2.3 (CVE-2023-36515)

Added rule id: 77350503 – IM360 WAF: Ninja Forms Code Injection Attempt (CVE-2024-37934)

I check these two vulnerabilites in wordfence datebase, found that 1st bug CVE-2023-36515 was reported in wordfence on July 4, 2023

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/learnpress/learnpress-4231-missing-authorization

2nd rule CVE-2024-37934 is reported on July 4, 2024

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/ninja-forms/ninja-forms-384-authenticated-subscriber-arbitrary-shortcode-execution

other rules similar, seems comes too late, so I doubt does imunify360 really works?

[ad_2]
1 Comment

  1. Immunify360 is general purpose server security software. It’s not WordPress specific so it’s not going to include all known WordPress CVEs.

 

This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer