Plugin attacks keep rising, with Gravity Forms facing the highest threat at 10/10. Plus, our blog walks you through backing up your WooCommerce store without losing any data.
#1 – High Security Risks in Popular Plugins
We’re flagging these widely-used plugins first due to high-risk vulnerabilities. Verify that you have the latest updates installed.
Gravity Forms Plugin
Arbitrary File Upload; 10/10; Update to v2.9.23.1+
Advanced Ads Plugin
RCE; 9.1/10; Update to v2.0.15+
Editor Comment
It’s worth taking a few minutes each week to perform a sites review to catch issues early and wherever possible, use ShieldPRO’s auto-upgrade feature for vulnerable plugins.
#2 – Lower Security Risks in Popular Plugins
With over 700,000 sites using these plugins, the risks are real. Make sure you’re on the latest version.
Aruba HiSpeed Cache Plugin
Broken Access Control; 6.5/10; Update to v3.0.3+
PixelYourSite – Your smart PIXEL (TAG) Manager Plugin
Sensitive Data Exposure; 5.3/10; Update to v11.1.5.1+
Strong Testimonials Plugin
Broken Access Control; 4.3/10; Update to v3.2.19+
Editor Comment
It’s worth taking a few minutes each week to perform a sites review to catch issues early and wherever possible, use ShieldPRO’s auto-upgrade feature for vulnerable plugins.
#3 – High Security Risks in Less Popular Plugins
These plugins carry serious security risks. Keep your installations up to date.
Print Invoice & Delivery Notes for WooCommerce Plugin
RCE; 10/10; Update to v5.9.0+
MapSVG Plugin
Arbitrary File Upload; 9.9/10; Update to v8.7.4+
wpDiscuz Plugin
Privilege Escalation; 9.8/10; Update to v7.6.40+
Branda Plugin
Privilege Escalation; 9.8/10; Update to v3.4.29+
Newsletters Plugin
PHP Object Injection; 9.8/10; Update to v4.12+
Team Plugin
SQL Injection; 9.3/10; Update to v5.0.11+
Ocean Modal Window Plugin
RCE; 9.1/10; Update to v2.3.3+
Editor Comment
It’s worth taking a few minutes each week to perform a sites review to catch issues early and wherever possible, use ShieldPRO’s auto-upgrade feature for vulnerable plugins.
#4 – Our blog: How to Back Up WooCommerce Stores
Backups are not just about having one but having the right kind. WooCommerce constantly changes with sales, customers, and inventory, and simple backups miss that.
Learn how to back up WooCommerce stores safely, preserving transactions, handling large databases, and automating the process.
Thanks for reading, and have a wonderful week!
Paul Goodchild
Shield Security for WordPress
