It’s been another quiet week, so just a few items this morning that we think you should know about.
#1 – XSS Vulnerability: Post SMTP Mailer Plugin
With 400K+ installs, you’re probably running it somewhere…
How will I know I’m okay?
Upgrade the plugin to v2.8.7+
What’s the risk?
Unauthenticated XSS: 7.1/10 severity.
Editor Comment
If you use ShieldPRO’s automatic upgrader for vulnerable plugins/themes, this will be done automatically for you.
#2 – XSS Vulnerability: Rank Math SEO Plugin
With 2M+ installs, chances are good you’re running it somewhere…
How will I know I’m okay?
Upgrade the plugin to v1.0.215+
What’s the risk?
Not a major risk, but worth upgrading: 6.5/10 severity.
Editor Comment
If you use ShieldPRO’s automatic upgrader for vulnerable plugins/themes, this will be done automatically for you.
#3 – WordPress 6.5 Imminent: Tomorrow
WP 6.5 is due out tomorrow. There’s a lot in this one.
What’s New?
See here for a full breakdown of everything new.
Editor Comment
We particularly like the new Font Library feature.
#4 – ShieldPRO 19.1 Imminent: Today!
We’re putting the final touches to ShieldPRO 19.1. It’ll be released by the time you read this email, or shortly after.
What’s New?
Instant Alerts feature – get instant email alerts for critical events and discoveries on your site.
Editor Comment
As always you can check out the changelog for details.
Thanks for reading, and have a fab week!
Paul Goodchild
Shield Security for WordPress
