wpDiscuz Premium - WordPress Comments Plugin 7.6.45

[sarisan]

A new update for wpDiscuz Premium - WordPress Comments Plugin 7.6.45 is now available for free download. Big thanks to the contribution from our member @sarisan !

changelog

v7.6.45 - 19.01.2026 =
* Added: A new filter hook "wpdiscuz_validate_nonce_for_guests" to control wpdGetNonce ajax requests for guest users

v7.6.44 - 15.01.2026 =
* Security: Fixed IDOR vulnerability in AJAX actions (CVE-2025-68997)
* Security: Added post access authorization check to voteOnComment - uses $comment->comment_post_ID from database, not user-supplied postId (prevents parameter manipulation bypass)
* Security: Added server-side rate limiting to AJAX actions (vote 20/min, rate...

Read the rest of this update entry...