White Label CMS Vulnerability

A vulnerability has been found in White Label CMS, up to version 1.5.2. The vulnerability makes it possible to inject malicious code into websites, by tricking a site administrator into clicking a specially crafted URL. A fix has been released with version 1.5.3.

We have attempted to push an update to all websites on VaultPress with this plugin, upgrading them to 1.5.3. However, we were unable to update some websites due to permission issues.

We will email all site owners who we were unable to upgrade, recommending that they update their site as soon as possible.

As always, drop us a line if you have any questions!

This entry was posted in General, Security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s