WP Security: plugin vulnerabilities June

For your WordPress protection, be informed about the latest vulnerabilities in WP plugins:

  1. All-in-One WP Migration
    • Cross-Site Scripting (XSS) reported by Twitter user @0w4ys. Immediately update to version 6.46 to fix the vulnerability.
  2. Ultimate Product Catalogue
    • Authenticated SQL Injection reported by Twitter user @log_oscon. Immediately update to version 4.2.3 to fix the vulnerability.
  3. Photo Gallery by WD – Responsive Photo Gallery for WordPress
    • Authenticated Path Traversal reported by Dewhurst Security. Immediately update to version 1.3.43 to fix the vulnerability.
  4. WordPress Download Manager
    • Authenticated Reflected Cross-Site Scripting (XSS) reported by Dewhurst Security. Immediately update to version 2.9.52 to fix the vulnerability.
  5. WP Jobs
    • Authenticated SQL Injection reported by Dewhurst Security. Immediately update to version 1.5 to fix the vulnerability.

 

Protect your WordPress: BEFORE IT’S TOO LATE! You will also protect your customers, your reputation and your online business!


 

Related Posts

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

LIFETIME GIVEAWAY
spin now to WIN DISCOUNT Codes

Win a discounted lifetime license of our recurrent owl WPS plans from these categories: owl WP SERVICES + owl WPS ADD-ON + owl SUITE. Valid for new customers within 1 day, starting with voucher generation day. Discount is valid each month, until you cancel your account or your card gets declined.

X
X
WIN