Get Announcements delivered to your Inbox! Subscribe to the Announcements list
Newsletter < 6.7.7 - Authenticated Stored Cross-Site Scripting - fixed in version 6.7.7
We have a couple of important notices to share with our MWP hosting customers. We value your feedback and input, so please don't hesitate to get in touch with us if you have any questions, concerns or otherwise, regarding these changes. Changes to Annual Payment Discount Since launching our MWP shared-server NZ hosting in 2014, we have ...
WooCommerce < 4.2.1 - Potential Cross-Site Scripting (XSS) via SelectWoo -- fixed in version 4.2.1
WPForms < 1.6.0.2 - Authenticated Stored Cross-Site Scripting (XSS) -- fixed in version 1.6.0.2
We've rolled out the following updates to all Managed WordPress sites: Elementor Page Builder < 2.9.10 - Authenticated Stored XSS - fixed in version 2.9.10 WooCommerce < 4.2.1 - Potential Cross-Site Scripting (XSS) via SelectWoo - fixed in version 4.2.1 bbPress - Multiple Updates - fixed in version 2.6.5 GravityForms < 2.4.9 - ...
Duplicate Page and Post < 2.5.7 & WP Post Page Clone < 1.1 - SQL Injecti...
wp-post-page-clone - WP Post Page Clone -fixed in version 1.1
duplicate-wp-page-post - Duplicate Page and Post -fixed in version 2.5.7
All Managed WordPress sites have been updated.
Easy Testimonials < 3.6 - Authenticated Stored Cross-Site Scripting (XSS) fixed in version 3.6 - 9.1 (Critical)
All Managed WordPress sites have been updated.
Site Kit by Google < 1.8.0 - Privilege Escalation to gain Search Console - fixed in version 1.8.0 - 9.1 (Critical)
All Managed WordPress sites have been updated automatically.
WooCommerce < 4.1.0 - Unescaped Metadata when Duplicating Products This is a low-severity issue, we will update --patch what WooCommerce sites we can. We will then contact WooCommerce users about updating. More information is available here: https://wpvulndb.com/vulnerabilities/10220 See this thread for more information on this ...
- Prev Page
- Next Page
