TemPlaza

TemPlaza, the website built and improved by TemPlaza., JSC. We supply templates and other qualified applications on Joomla and WordPress.

Email: support@templaza.com

Visual Composer - Security Vulnerabilities

Dear all our beloved customers,

Visual Composer is known as a powerful page builder plugin for WordPress. With this plugin, you can take full control over your site. It is extremely easy for you to build any layout with intuitive drag and drop editor.

However, it is addressed that there are multiple XSS security vulnerabilities in this Visual Composer WordPress plugin versions prior to 4.7.4 which is released on 2 December 2015. In this version, there are two main changes including fixing the bug in grid builder presets and adding extra ajax check.

In order to secure your sites from these vulnerabilities we strongly encourage you to update to version 4.7.4 or later as soon as possible. Instructions on how to update Visual Composer can be found on the WPBakery website. In case you are using one of our following WordPress themes, you can go to our website or our official marketplaces where you bought our themes to download their latest versions which have already included Visual Composer version 4.7.4. To check current plugin version you are using, you can go to Dashboard / Plugins / Installed plugins and search for Visual Composer Entry.

There are some TemPlaza themes developed with this plugin:

Liona Portfolio WordPress Theme

Ethic Education, Event and Course Theme

Mendoza Multipurpose WordPress Theme

Everline Wedding WordPress Theme

deKor Interior WordPress Theme

Titania Multipurpose WordPress Theme

How to update plugin with our themes:

Option 1: Upload Visual Composer file

o Download latest theme version you are using

o Extract theme package and go to Plugin folder

o Go to Dashboard / Plugins / Installed Plugins, then you can deactivate and delete current version of Visual Composer.

o Upload and activate new version which is named js_composer.zip included in Plugin folder

       o After that, you should update both theme version and Plazart plugin to corresponding versions which are already compatible with new version of Visual Composer.

Option 2: Update theme, then update Visual Composer

o Download latest theme version you are using

o Extract theme package downloaded.

o Install and activate new theme version.

o Go to Dashboard / Plugins / Installed Plugins, then you can deactivate and delete current version of Visual Composer

o After that, in your dashboard, you will receive a message like in picture below. Just click on Beginning installing plugins and reinstall Visual Composer. By this way you don’t need to upload plugin file in Plugin folder.

Notice: You should update Plazart plugin to newest version which is included in theme file.

reinstall

Hope this information is useful for you. It is extremely important to have this plugin updated with version 4.7.4 as soon as possible. Let’s share this post with your friends right now!

0
Tweet
Tags:
Security vulnerabilities Vulnerabilities Visual composer

About the author

Sonny

Sonny

Subscribe to updates from author Unsubscribe to updates from author

I am Sonny. C.M.O at TemPlaza.com. I love travel, swimming and reading. Happy to meet everyone around the world.

Author's recent posts
More posts from author
Comment for this post has been locked by admin.
 

Comments Comments

Login