The Limit Login Attempts plugin for WordPress had a critical vulnerability affecting over 600,000 sites. This unauthenticated stored Cross-Site Scripting vulnerability allowed attackers to inject harmful JavaScript into the site’s database. A site administrator accessing the logging page could lead to a site takeover. However, the vulnerability was fixed in version 1.7.2, released on April 4, 2023.

Keeping WordPress updated and backed up regularly is important to protect your website. We recommend that all WordPress site owners who use Limit Login Attempts upgrade to version 1.7.2 as soon as possible.

SpierSavvy’s Managed WordPress hosting is an extensive service that caters to all the technical aspects of a WordPress website, including software updates, security, backups, and performance optimization. This service benefits those needing more technical expertise or time to manage their website. Using managed WordPress hosting, website owners can concentrate on producing content and developing their business while delegating technical responsibilities to the hosting provider.

Additionally, managed WordPress hosting providers offer specialized support for WordPress, which can rapidly resolve any issues that may arise—ultimately, managed WordPress hosting guarantees that a website is secure, fast, and easily accessible to visitors, which are critical to online success.