WordPress W3 Total Cache and WP Super Cache Vulnerability Updated on August 16, 2021 by InMotion Hosting Contributor 1 Minutes, 13 Seconds to Read There have recently been vulnerabilities found in two very popular WordPress caching plugins, W3 Total Cache (W3TC) and WP Super Cache. These plugins should immediately be updated to their latest versions which patches the current exposed exploits. As InMotion Hosting and many other hosting providers recommend both the W3 Total Cache and WP Super Cache WordPress caching plugins, there is an estimated 6 Million users spread between the two plugins. Scope of problem Both of these great WordPress caching plugins have unfortunately had an extreme security risk exposed in older versions, and these exploits could possibly allow for remote code execution (RCE). So this call to upgrade is not to be taken lightly. What versions are safe? If you are running any version older than the below of either of these WordPress plugins, we recommend immediately updating to the latest version release from the plugin authors. W3 Total Cache 0.9.2.9 WordPress Super Cache 1.3.2 Update WP Super Cache or W3TC If you are running a version of these plugins that is older than what’s above, you call follow my guide on how to update a WordPress plugin. For more information you can check out either the W3 Total Cache changelog, or the WP Super Cache changelog. If you believe your WordPress website has been affected by this recent exploit, you might be interested in following our guide on how to reinstall WordPress after a hack, or as always please contact technical support for further assistance. Share this Article InMotion Hosting Contributor Content Writer InMotion Hosting contributors are highly knowledgeable individuals who create relevant content on new trends and troubleshooting techniques to help you achieve your online goals! More Articles by InMotion Hosting Related Articles How to Prevent Image Hotlinking with .htaccess Rules How to Edit a Website File on Your Server How to Import a Table Using phpMyAdmin Force HTTPS with the .htaccess File The Complete Guide to cPanel Backups Schedule Social Media Posts With Buffer How to Google Analytics to WordPress Without a Plugin How to Install Jekyll and Launch a New Site FTP Basics for Dedicated Servers What is your default PHP.ini file?
