Better WordPress Security Plugin Gets Major Update To Address Security Vulnerabilities

Chris Wiegman of iThemes has announced the latest update to the Better WP Security plugin contains fixes for vulnerabilities discovered in 3.6.3.  The updates address compatibility with InfiniteWP, the removal of their in-dashboard support form, and FooPlugins support form code.

Better WordPress Security Scan
Better WordPress Security Scan

While support for InfiniteWP was removed in 3.6.4, it’s been restored in 3.6.5 as they have since come up with a satisfactory solution eliminating the security risk. Wiegman goes into detail on each issue on the iThemes blog and assures everyone that as of version 3.6.5, the plugin contains no security vulnerabilities.

Users of Better WordPress Security are encouraged to update to the latest version to receive the security patches.

3 Comments


  1. Thanks Jeff. It’s worth pointing out that both issues were with 3rd party code and the Foo issue wasn’t exploitable on the site. Tha said, we’re releasing a complete rewrite next week or so which will take it all to the next level.

    Report


  2. From the title, I assumed the plugin itself had security vulnerabilities. Nice to hear that wasn’t the case.

    Report


  3. better wp security is getting more compatible with 3rd party plugins and earlier it had problem with manaewp.com plugin as well. but the issues are being fixed quickly now.

    Report

Comments are closed.