Recent exploits have been discovered in two very popular WordPress caching plugins, WP Super Cache and W3 Total Cache (W3TC). Both plugins should be updated right away to prevent a possible security risk for your WordPress website.
Because Web Hosting Hub along with many other hosting companies highly recommends both WP Super Cache, and W3 Total Cache, there is close to an estimated 6 Million users split up between the two plugins.
What is vulnerable?
Older versions of both caching plugins have an exploit in them that could potentially allow an attacker to remotely execute code, also referred to as a remote code execution (RCE) attack. So the need to update these plugins to their latest version is very important.
What versions are at risk?
Any version of WP Super Cache prior to 1.3.2, or any version of W3 Total Cache earlier than 0.9.2.9 could possibly be at risk.
If you currently are running an older version of either of these WordPress plugins, we recommend you follow our guide on how to update a WordPress plugin, for steps on how to get them updated so that your website is secure.
If you think your WordPress site was exploited you might be interested in following our guide on how to reinstall WordPress after a hack. Or if you need further assistance, as always please contact support.