{"id":3350,"date":"2014-07-11T14:55:36","date_gmt":"2014-07-11T14:55:36","guid":{"rendered":"https:\/\/www.inmotionhosting.com\/support\/2014\/07\/11\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/"},"modified":"2021-08-16T22:58:32","modified_gmt":"2021-08-17T02:58:32","slug":"mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately","status":"publish","type":"post","link":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/","title":{"rendered":"MailPoet Newsletters WordPress plugin vulnerability – update immediately"},"content":{"rendered":"

On July 4th, 2014 a vulnerability was discovered in the MailPoet Newsletters<\/a> plugin for WordPress that allows code to be remotely injected into any sites that are running versions 2.6.7 or older.<\/p>\n

Am I affected?<\/h2>\n

Thankfully, the developer of the MailPoet Newsletters plugin has released an update that resolves the security vulnerabilities. If you are running the latest version of MailPoet Newsletters which is currently version 2.6.8, you are NOT vulnerable. If you are running an older version of this plugin, you need to update immediately<\/a> to prevent your site from becoming compromised.<\/p>\n

What if I have become compromised?<\/h2>\n

We recommend to fully restore from any backups that you have previously made in the past to be safe, and update the MailPoet Newsletters plugin as soon as possible. If you do not have a backup that you can restore from, we recommend looking through your code for abnormalities.<\/p>\n

How do I prevent this in the future?<\/h2>\n

There is no 100% way to avoid vulnerabilities, bit your best line of defense is to keep all plugins updated at all times which dramatically decreases your chances of running a vulnerable site.<\/p>\n","protected":false},"excerpt":{"rendered":"

On July 4th, 2014 a vulnerability was discovered in the MailPoet Newsletters plugin for WordPress that allows code to be remotely injected into any sites that are running versions 2.6.7 or older. Am I affected? Thankfully, the developer of the MailPoet Newsletters plugin has released an update that resolves the security vulnerabilities. If you are Read More ><\/a><\/p>\n","protected":false},"author":12,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,4325,56],"tags":[],"class_list":["post-3350","post","type-post","status-publish","format-standard","hentry","category-email","category-wordpress-hosting","category-wordpress"],"acf":[],"yoast_head":"\nMailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting\" \/>\n<meta property=\"og:description\" content=\"On July 4th, 2014 a vulnerability was discovered in the MailPoet Newsletters plugin for WordPress that allows code to be remotely injected into any sites that are running versions 2.6.7 or older. Am I affected? Thankfully, the developer of the MailPoet Newsletters plugin has released an update that resolves the security vulnerabilities. If you are Read More >\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\" \/>\n<meta property=\"og:site_name\" content=\"InMotion Hosting Support Center\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/inmotionhosting\/\" \/>\n<meta property=\"article:published_time\" content=\"2014-07-11T14:55:36+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-17T02:58:32+00:00\" \/>\n<meta name=\"author\" content=\"Jeff Matson\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@InMotionHosting\" \/>\n<meta name=\"twitter:site\" content=\"@InMotionHosting\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jeff Matson\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\"},\"author\":{\"name\":\"Jeff Matson\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/83776252b196c020e4352a3796e5642b\"},\"headline\":\"MailPoet Newsletters WordPress plugin vulnerability – update immediately\",\"datePublished\":\"2014-07-11T14:55:36+00:00\",\"dateModified\":\"2021-08-17T02:58:32+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\"},\"wordCount\":193,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\"},\"articleSection\":[\"Email\",\"WordPress Hosting\",\"WordPress Tutorials\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\",\"name\":\"MailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting\",\"isPartOf\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#website\"},\"datePublished\":\"2014-07-11T14:55:36+00:00\",\"dateModified\":\"2021-08-17T02:58:32+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.inmotionhosting.com\/support\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MailPoet Newsletters WordPress plugin vulnerability – update immediately\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#website\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/\",\"name\":\"InMotion Hosting Support Center\",\"description\":\"Web Hosting Support & Tutorials\",\"publisher\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.inmotionhosting.com\/support\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\",\"name\":\"InMotion Hosting\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg\",\"contentUrl\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg\",\"width\":696,\"height\":696,\"caption\":\"InMotion Hosting\"},\"image\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/inmotionhosting\/\",\"https:\/\/x.com\/InMotionHosting\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/83776252b196c020e4352a3796e5642b\",\"name\":\"Jeff Matson\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/author\/jeffma\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/","og_locale":"en_US","og_type":"article","og_title":"MailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting","og_description":"On July 4th, 2014 a vulnerability was discovered in the MailPoet Newsletters plugin for WordPress that allows code to be remotely injected into any sites that are running versions 2.6.7 or older. Am I affected? Thankfully, the developer of the MailPoet Newsletters plugin has released an update that resolves the security vulnerabilities. If you are Read More >","og_url":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/","og_site_name":"InMotion Hosting Support Center","article_publisher":"https:\/\/www.facebook.com\/inmotionhosting\/","article_published_time":"2014-07-11T14:55:36+00:00","article_modified_time":"2021-08-17T02:58:32+00:00","author":"Jeff Matson","twitter_card":"summary_large_image","twitter_creator":"@InMotionHosting","twitter_site":"@InMotionHosting","twitter_misc":{"Written by":"Jeff Matson","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#article","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/"},"author":{"name":"Jeff Matson","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/83776252b196c020e4352a3796e5642b"},"headline":"MailPoet Newsletters WordPress plugin vulnerability – update immediately","datePublished":"2014-07-11T14:55:36+00:00","dateModified":"2021-08-17T02:58:32+00:00","mainEntityOfPage":{"@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/"},"wordCount":193,"commentCount":0,"publisher":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#organization"},"articleSection":["Email","WordPress Hosting","WordPress Tutorials"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/","url":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/","name":"MailPoet Newsletters WordPress plugin vulnerability - update immediately | InMotion Hosting","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#website"},"datePublished":"2014-07-11T14:55:36+00:00","dateModified":"2021-08-17T02:58:32+00:00","breadcrumb":{"@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.inmotionhosting.com\/support\/email\/mailpoet-newsletters-wordpress-plugin-vulnerability-update-immediately\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.inmotionhosting.com\/support\/"},{"@type":"ListItem","position":2,"name":"MailPoet Newsletters WordPress plugin vulnerability – update immediately"}]},{"@type":"WebSite","@id":"https:\/\/www.inmotionhosting.com\/support\/#website","url":"https:\/\/www.inmotionhosting.com\/support\/","name":"InMotion Hosting Support Center","description":"Web Hosting Support & Tutorials","publisher":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.inmotionhosting.com\/support\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.inmotionhosting.com\/support\/#organization","name":"InMotion Hosting","url":"https:\/\/www.inmotionhosting.com\/support\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/","url":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg","contentUrl":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg","width":696,"height":696,"caption":"InMotion Hosting"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/inmotionhosting\/","https:\/\/x.com\/InMotionHosting"]},{"@type":"Person","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/83776252b196c020e4352a3796e5642b","name":"Jeff Matson","url":"https:\/\/www.inmotionhosting.com\/support\/author\/jeffma\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"primary_category":null,"_links":{"self":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/3350","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/comments?post=3350"}],"version-history":[{"count":1,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/3350\/revisions"}],"predecessor-version":[{"id":84220,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/3350\/revisions\/84220"}],"wp:attachment":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/media?parent=3350"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/categories?post=3350"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/tags?post=3350"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}