On Monday, May 4, 2020, the Wordfence Threat Intelligence team discovered two vulnerabilities present in Page Builder by SiteOrigin, a WordPress plugin actively installed on over 1,000,000 sites. Both of these flaws allow attackers to forge requests on behalf of a site administrator and execute malicious code in the administrator’s browser. The attacker needs to trick a site administrator into executing an action, like clicking a link or an attachment, for the attack to succeed.
These are considered high-risk security issues that could lead to full site takeover. We recommend an immediate update of Page Builder by SiteOrigin to the latest version available. At the time of writing, that is version 2.10.16.
Both the free and Premium version of the Wordfence firewall protect against these vulnerabilities via the built in cross site scripting (XSS) protection in the Wordfence firewall.
Contact us to find out more about our web maintenance packages to keep your website secure.
Building trust on a website is essential for converting visitors into customers. Even a few small changes can make a…
You only have one chance to make a good first impression. This first impression, and keeping your new visitors on…
Wow the world is changing fast and its impact on marketing is significant. Branding has evolved significantly over the past…
We’ve all attended virtual networking meetings and wished we were more prepared ahead of time to share our contact information…
The Importance of Collaboration and Networking for Entrepreneurs with Susan Jarema Tune into the episode for insights from Susan: *…
It was another grand networking workshop focused on learning our 6 Grand Principles of Networking (clarity, trust, grand giving, follow-up,…