Over 300,000 Sites Potentially Vulnerable Due to Newsletter Plugin

August 5, 2020 By Nick J Leave a Comment

After recently patching a vulnerability last month, Newsletter, a WordPress plugin installed in over 300,000 websites, was discovered to have two additional, more serious vulnerabilities, a Cross-Site Scripting(XSS) vulnerability and a PHP Object Injection vulnerability.

After receiving the report, the plugin developers immediately released another update to patch those two specific vulnerabilities.

We strongly recommend updating to the latest version of the Newsletter plugin as soon as possible. As of this writing, that is version 6.8.3.

For more information please check the official public release.

If you have questions, don’t hesitate to contact our support team.

Leave a Reply Cancel reply

Awesome! Fantastic! I just went to our site and I see that our site has been fixed!! We are getting orders again thanks to you all at WooAssist! Our site has not worked and looked this good for many months!! You all are awesome! Thank you so much for fixing our site! You have a customer for life! Thanks for making my day wonderful!

Kenneth Arnold

We have been quite pleased working with WooAssist as they help fill in the gaps of our development needs, all at a great price. They are always timely and communicate great, I highly recommend their services.

James Grasty

My husband and I am EXTREMELY pleased with the WooAssist Team. They provide excellent service, are very knowledgeable, and super easy to communicate with. The team ALWAYS has our company's best interests in mind. I love WooAssist! All of you make my job easier.

Jennifer Taft leetaft.com

Your subscription could not be saved. Please try again.

Your subscription has been successful.

Over 300,000 Sites Potentially Vulnerable Due to Newsletter Plugin

Get started today

Get 2 Hours of FREE SUPPORT

Free eBook

Quick Links

Wooassist

Connect

People that read this article also liked