W3 Total Cache XSS Vulnerability Fixed

W3 Total Cache Vulnerability Fixed!

Last week WP Media reported a high risk XSS vulnerability in W3 Total Cache.  The reason that’s important news is that the plugin is currently active on more than one million WordPress sites!

This includes some of  our Clients.

Here’s what’s happened since then.

First.  W3 Total Cache is a very popular plugin, but it hasn’t been updated in over six months and we stopped using it and recommending it over a year ago.

Our WordPress Support GROW package includes the much more effective WP Rocket, plugin.

Second.  We’ve updated our client sites with  new secure version!   So if you are using this older plugin and have not yet updated to the WP-Rocket plugin your site has been updated to a version of W3 Total Cache that has the XSS vulnerability removed.

We’re really excited about how easy WP-Rocket has been to tweak for all the different options available to WordPress Bloggers and the speed improvements have been spectacular.

Make sure to check it out if you haven’t already.