3 Severe Plugin Vulnerabilities Fixed in the Last 24 Hours

The following three plugins contain severe vulnerabilities that have all been fixed within the past 24 hours. Details of these vulnerabilities have been released to the public so they are likely already being exploited. If you use any of these plugins, upgrade immediately. Please share with the larger WordPress community.

Upgrade immediately if you use any of these and please share this information with the larger WordPress community.

To learn more about SQL injection vulnerabilities or file upload vulnerabilities, visit our WordPress Security Learning Center.

Did you enjoy this post? Share it!


  • Thanks for the info, folks. You're doing a great service. I use Wordfence on all of my sites, and hope to upgrade to Premium one day.

  • Thank guys.

    I appreciate your information.


  • Thank you for raising the awareness, have advised a few people to check their plugins if they are using them.

  • Thanks for information! Much appreciated

  • Thanks!! Ever since I am a WordFence (platinum) user, I sleep confidently every night!!

  • Thanks for your very helpfull updates.

  • Thanks so much for keeping the WP community in the loop. We find your blog and product and invaluable resource where security is concerned. Regards Tony Scott (CEO Akira Studio)

  • Thank you for the info.

  • Thank you for all

  • It's always a breath of fresh air knowing you guys (and gals) are always keeping a sharp eye out for these vulnerabilities so the rest of us can spend time where we're supposed to, tending to our business ;) I am a premium user and I know sometimes people read comments and don't know if it's just some sort of plug to sell more. Makes no difference to me what others think. I just had to let you know "I love you guys!" thanx!!!!!

    • Thanks Duncan. Much appreciated.

  • Thanks for the heads up. I've used the User-Meta plugin on one of my clients websites. I'll upgrade now.

  • Thanks for the updates guys, so glad you are keeping an eye on these vulnerabilities!

  • Thanks for the heads up! Appreciate your hard work!

  • Really appreciate what y'all do to keep WordPress sites safe. Thanks for spreading the word about these vulnerabilities.

  • Thanks for this timely info!