Widespread WordPress Vulnerability Plugins and Themes Security

This is a general community announcement to bring your attention to an XSS vulnerability affecting multiple WordPress plugins and themes. The vulnerability is caused by a common code pattern used in WordPress plugins and themes available from ThemeForest and CodeCanyon, the wordpress.org website and other sources.

This issue is not limited to themes and plugins purchased from ThemeForest or CodeCanyon. Anyone using a WordPress website, regardless of where the theme or plugin was sourced, needs to be aware of this and take immediate action to ensure it is secure.

What should I do?

As there is no simple way of knowing exactly which plugins or themes are affected, and the issue is widespread, our best advice is to periodically check for updates to any WordPress themes or plugins you are using and apply those available as soon as possible.Envato is actively working with all ThemeForest and CodeCanyon authors, explaining the issue and asking them to check that their items are secure and to update them if necessary.We expect ThemeForest and CodeCanyon items to be continuously updated over the coming weeks, with the majority updated in the next few days. Updates may be downloaded from the Downloads page as they become available. If you would like to be automatically

via Widespread WordPress Plugins and Themes Security Vulnerability – Market Blog.


We bring you breaking news to protect your site and content. A major WordPress vulnerability was discovered and has been implemented into many plugins that as of yet do not have an update. The cause is linked to the WordPress Codex which many developers use when developing themes, plugins, and websites utilizing WordPress.

Please update your sites as soon as possible to prevent hacks and other actions that could be detrimental to your site. Check back often to see if there are updates to the plugins you were not able to update. If you need help updating your site or if it has been hacked feel free to contact us and we will be happy to help.

(862) 812-1612

Yours Truly,

Don Silvernail – CEO

Silvernail Web Design

Let our WordPress Services Deliver Results

WordPress Web Site Design, SEO Optimization, Content Marketing and Social Media Management