This week: a few more big vulnerabilities to look-out for, a piece from our archives, and the WCAsia livestreams.
#1 – Vulnerability: File Manager Free & Pro
Both the free & pro versions have serious vulnerabilities, with millions of installs, so make sure you’re on top of this one.
How will I know I’m okay?
Upgrade the plugin to at least v8.3.5
Editor Comment
If you use ShieldPRO’s automatic upgrader for vulnerable plugins/themes, this will be done automatically for you.
#2 – Vulnerability: Avada Theme
This scores a horrible 9.9/10 in severity, where it lets the attacker upload any file to your site.
How will I know I’m okay?
Upgrade the plugin to at least v7.1.1.5
Editor Comment
If you use ShieldPRO’s automatic upgrader for vulnerable plugins/themes, this will be done automatically for you.
#3 – 27+ Vulnerabilities (from the archives)
Still one of our most popular articles: 27+ WordPress vulnerabilities and what to do about them.
Why is this helpful?
It’s useful to start to become aware of what risks you and your WordPress sites really face.
Editor Comment
An ounce of prevention is worth a pound of cure, as the saying goes. Keeping security always in the back of your mind, and consider ways to mitigate risk before it’s an issue is a good security strategy.
#4 – WordCamp Asia 2024 LiveStreams
In case you missed it, you can catch-up on WCAsia 2024 with all the livestreams.
Q&A With Matt
There’s also a Q&A with Matt Mullenweg here.
Editor Comment
All the livestreams are available on the WordPress Youtube channel. They’re long, so you may want to look up the schedule to help you pinpoint the talks that interest you.
Have a fantastic week!
Paul Goodchild
Shield Security for WordPress