|Wordpress Vulnerability - IMMEDIATE ACTION REQUIRED|
| *IMPORTANT* - Wordpress version < 3.9.2 vulnerable to compromise. Update IMMEDIATELY REQUIRED.
If you have Wordpress version 3.9.2 or below installed anywhere on your website / account you need to take immediate action, otherwise your website and hosting account could be compromised and defaced, deleted, used to send spam or launch attacks against others which violates our acceptable use policy.
If you are unsure if you run Wordpress, please consult your website developer(s).
You can check if you have Wordpress installed yourself via http://
If Wordpress IS installed, you will need to check the version. This can be done by the following two methods:
Log in to http://
Check the following file (wp-includes/version.php) and look for the version number inside the $wp_version string. This file can be accessed by File Manager inside cPanel, or by downloading and viewing it via FTP.
Any version that is 3.9.2 or below is susceptible to this attack and immediate action to updating Wordpress is required. Any version above 3.9.2 is NOT susceptible however updating to the latest version (4.0.1) does address a further 8 known security issues.
If you have installed Wordpress via Softaculous (via cPanel) then you can visit the Softaculous panel in cPanel to install an update, otherwise you may be able to update via the Wordpress Admin interface at /wp-admin depending on the version of Wordpress currently installed.
Please be aware that it is your responsibility to ensure that software is up to date on your hosting account.
For the security report, please see: https://wordpress.org/news/2014/11/wordpress-4-0-1/
For various methods of updating Wordpress, please see: http://codex.wordpress.org/Updating_WordPress
Please raise a ticket with us if you have difficulties in performing the updates.
You are receiving this email because you are a listed contact for a Clook Internet hosting service.
|Updated by Dan Miller on 21st Nov 2014 @ 09:42am|