Get Announcements delivered to your Inbox! Subscribe to the Announcements list

Code Snippets < 2.14.0 - CSRF to RCE

Code Snippets < 2.14.0 - CSRF to RCE

All WP NET Managed WordPress sites have been updated.

Elementor Page Builder Vulnerabilities Patched

2020-01-29 Elementor Page Builder < 2.8.5 - Authenticated Reflected XSS -- fixed in version 2.8.5
2020-01-29 Elementor Page Builder < 2.7.6 - Authenticated Stored XSS -- fixed in version 2.7.7

See https://wpvulndb.com/plugins/elementor for more information.

All WP NET Managed WordPress sites have been updated.

WP Database Reset < 3.15 - Unauthenticated Database Reset
Divi, Extra, Divi Builder < 4.0.10 - Authenticated Code Injection

ElegantThemes (divi, extra, divi-builder < 4.0.10) - Authenticated Code Injection - fixed in version 4.0.10 Important Notes for Divi Users  All Managed WordPress sites that meet the following criteria have been updated to the latest version (4.0.11 at time of writing): Div or Extra theme or Divi Builder plugin installed Is already at ...

WooCommerce Conversion Tracking < 2.0.5 - CSRF to XSS

WooCommerce Conversion Tracking < 2.0.5 - CSRF to XSS

All Managed WordPress site have been updated.