Get Announcements delivered to your Inbox! Subscribe to the Announcements list

CMP - Coming Soon & Maintenance < 3.8.2 - Improper Access Controls on AJAX Calls
Newsletter < 6.7.7 - Authenticated Stored Cross-Site Scripting
Important Changes to MWP Hosting Plans

We have a couple of important notices to share with our MWP hosting customers. We value your feedback and input, so please don't hesitate to get in touch with us if you have any questions, concerns or otherwise, regarding these changes. Changes to Annual Payment Discount Since launching our MWP shared-server NZ hosting in 2014, we have ...

WooCommerce < 4.2.1 - Potential Cross-Site Scripting (XSS)
WPForms < 1.6.0.2 - Authenticated Stored Cross-Site Scripting (XSS)
Multiple Plugin Security Updates Deployed

We've rolled out the following updates to all Managed WordPress sites: Elementor Page Builder < 2.9.10 - Authenticated Stored XSS - fixed in version 2.9.10 WooCommerce < 4.2.1 - Potential Cross-Site Scripting (XSS) via SelectWoo - fixed in version 4.2.1 bbPress - Multiple Updates - fixed in version 2.6.5 GravityForms < 2.4.9 - ...

Duplicate Page and Post < 2.5.7 & WP Post Page Clone < 1.1 - SQL Injections due to Duplicated Snippets

Duplicate Page and Post < 2.5.7 & WP Post Page Clone < 1.1 - SQL Injecti...

wp-post-page-clone - WP Post Page Clone -fixed in version 1.1

duplicate-wp-page-post - Duplicate Page and Post -fixed in version 2.5.7

All Managed WordPress sites have been updated.

Easy Testimonials < 3.6 - Authenticated Stored Cross-Site Scripting (XSS)

Easy Testimonials < 3.6 - Authenticated Stored Cross-Site Scripting (XSS) fixed in version 3.6 - 9.1 (Critical)

All Managed WordPress sites have been updated.

Site Kit by Google < 1.8.0 - Privilege Escalation to gain Search Console

Site Kit by Google < 1.8.0 - Privilege Escalation to gain Search Console -  fixed in version 1.8.0 - 9.1 (Critical)

All Managed WordPress sites have been updated automatically.

WooCommerce < 4.1.0 - Unescaped Metadata when Duplicating Products

WooCommerce < 4.1.0 - Unescaped Metadata when Duplicating Products This is a low-severity issue, we will update --patch what WooCommerce sites we can. We will then contact WooCommerce users about updating. More information is available here: https://wpvulndb.com/vulnerabilities/10220 See this thread for more information on this ...