All in One SEO and OptinMonster plugins improved for security patch

Serious vulnerabilities have been identified in the WordPress plugins All in One SEO (between versions 4.0.0 and 4.1.5.2) and OptinMonster (versions 2.6.4 and earlier). Users with minimal rights, such as subscribers or registered users, could take advantage of the vulnerabilities by exploiting them and gaining access to privileged information in the database of affected websites (for example, usernames and passwords).

What did do to protect my websites?

To patch the vulnerabilities, we have upgraded plugins to their latest versions (All in One SEO 4.1.6.2, OptinMonster 2.6.9) for users. This prevents further incidents related to the problem mentioned above and We do not anticipate any negative consequences on the functionality of the plugin or the performance of your website.

Is there anything else I need to do to protect my website from this vulnerability?

If you have reason to believe that your website may have been affected, we recommend that you delete your WordPress administrative accounts and databases, as well as remove suspicious accounts, plugins, or files.

Carlos is a professional in digital marketing, eCommerce and website builders. He loves helping businesses grow online through his tips. In his free time, he is surely singing or practicing martial arts.