There are many new vulnerabilities out there this week, including JetPack and Advanced Custom Fields.<\/p>\n\n\n\n
With 2+ million installations for the free version, many will be running the Pro edition.<\/p>\n\n\n\n
How will I know I’m okay?<\/strong> What’s the risk?<\/strong> Editor Comment<\/strong> More Info \u2192<\/a><\/p>\n\n\n\n 1+ million installations so many Elementor fans will be using this.<\/p>\n\n\n\n How will I know I’m okay?<\/strong> What’s the risk?<\/strong> Editor Comment<\/strong> More Info \u2192<\/a><\/p>\n\n\n\n Not the most severe, but huge installation base.<\/p>\n\n\n\n How will I know I’m okay?<\/strong> What’s the risk?<\/strong> Editor Comment<\/strong> More Info \u2192<\/a><\/p>\n\n\n\n This article outlines the principles of the Japanese keyword hack and how you might spot it, and mitigate it.<\/p>\n\n\n\n
Upgrade ASAP to v6.2.10+<\/p>\n\n\n\n
Severity risk 9.9\/10 – risk of local file inclusion!<\/p>\n\n\n\n
Please use ShieldPRO’s auto-upgrade feature<\/a> for vulnerable plugins.<\/p>\n\n\n\n#2 – Vulnerable: Elementor \u2013 Header, Footer & Blocks Templates<\/h2>\n\n\n\n
Upgrade ASAP to v 1.6.29+<\/p>\n\n\n\n
XSS allowing injection of malicious scripts into website that guests may execute.<\/p>\n\n\n\n
Please use ShieldPRO’s auto-upgrade feature<\/a> for vulnerable plugins.<\/p>\n\n\n\n#3 – Vulnerable: JetPack<\/h2>\n\n\n\n
Upgrade ASAP to v 13.3.1+<\/p>\n\n\n\n
XSS allowing injection of malicious scripts into website that guests may execute.<\/p>\n\n\n\n
Please use ShieldPRO’s auto-upgrade feature<\/a> for vulnerable plugins.<\/p>\n\n\n\n#4 – From our blog: Japanese Keyword Hack Primer<\/h2>\n\n\n\n