Automatic Plugin Updates | ww.wp.xz.cn

Leanne
(@norlink)

11 years, 2 months ago

When did automatic updates start happening? Looking through my file change logs, I’ve had a handful of sites update to 4.6.13 (they were running 4.6.10 & 4.6.12) last night but the majority of my websites I handle haven’t updated automatically. I also can’t find a setting anywhere in the plugin for automatic updates.

https://ww.wp.xz.cn/plugins/better-wp-security/

Viewing 2 replies - 1 through 2 (of 2 total)

Chris Jean
(@chrisjean)

11 years, 2 months ago

Sorry for the confusion Leanne. A critical security vulnerability was found in the plugin. In order to prevent this vulnerability from compromising sites once the vulnerability was known publicly, we worked with the ww.wp.xz.cn security team to have vulnerable versions automatically updated.

In other words, this is not a feature of the plugin. It is something that the ww.wp.xz.cn security team can do in order to ensure that critical security vulnerabilities on sites are quickly patched. This is only done rarely and when the ww.wp.xz.cn security team believes the vulnerability to be big enough to warrant the automatic update.

You can find further details about the vulnerability and the updates in our announcement post.

dwinden
(@dwinden)

11 years, 2 months ago

A critical security vulnerability was found in the plugin.

Yes, 11 months ago … and reported in this forum:

https://ww.wp.xz.cn/support/topic/log-viewer-xss

dwinden

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Automatic Plugin Updates’ is closed to new replies.

2 replies
3 participants
Last reply from: dwinden
Last activity: 11 years, 2 months ago
Status: not resolved