Vulnerability Exposes Over 4 Million Sites Using WPBakery

WPBakery page builder used to be one of the most popular page builders for WordPress and is still used by millions of sites that havent upgraded or moved on to any of the newer page builders. Page builders like WPBakery allow site owners to create custom pages using drag and drop capabilities.

On 7th October WordFence announced the discovery of a major flaw in WPBakery that allowed attackers to compromise WordPress sites. They say the flaw was discovered back in July and they had informed WPBakery to give them time to rectify the vulnerability.

It should be noted that Wordfence Premium users have been protected against exploits targeting these vulnerabilities since July 28, 2020. Wordfence free users received the same protection on August 28, 2020.

WPBakery released a patch on September 24, 2020. We highly recommend updating to the latest version, 6.4.1 as of today.

Thinking Fox don’t use or recommend the use of WPBakery for any client sites and we have been working for some time to remove or replace this page builder with one of the newer ones in all of our client sites.

If you have this plugin installed on your site and would like to chat to someone about removing or replacing it please get in touch with us and we’ll leap into action for you.

green, red, and white high voltage circuit breaker

About us

We’re a digital marketing agency based in Amersham, Buckinghamshire covering London and the South-East.

We’ve been around since 2009, providing consultancy and strategic services to clients across a number of sectors such as Healthcare, Technology, Telecoms, Publishing, Retail, Finance, and Travel.

We build digital experiences for companies and organisations that are finding their feet, pivoting, or who require a refreshing change.

If you need help with your next project click the big button below to get started:

Recent articles

TF Grocer_Working_With_Us_1920x1080-1024x576

The Grocer launches a new virtual shop front


WordPress 2020 Survey

WordPress Design and Development

WordPress 5.6 Release Candidate

person using black laptop computer

LearnDash and a Branding Wobble