Update the InfiniteWP Client WordPress plugin to Avoid Security Vulnerability

InfiniteWP allows users to manage unlimited number of WordPress sites from their own server. Recently a Vulnerability has been found in earlier verions of this plug-in.

Quote Sucuri:
“While doing a routine audit of our Website Firewall product, we discovered a vulnerability in the plugin that could be used by a malicious individual to 1) disable a users web site by putting it in maintenance mode and 2) allows the user to control the content of the maintenance page.”

If you are using a lower than version 1.3.8, please upgrade immediately to version 1.3.8 or higher. For further details on the issue, please visit this page.

As always, keeping your WordPress and Plugins updated is vital. So is having a complete backup of your site. For worry free backup service which starts at $1.50/mo, Doteasy Auto Site Backup is a great deal for a great service.

 

Posted in: Plugins, Security

Comments

comments