July 14, 2014 — By Dale Mugford

Security Fix in WPtouch and WPtouch Pro 3.4.3: Insecure Nonce Generation in WPtouch

Thanks to the folks at Sucuri.net we were made aware last week of a security vulnerability in WPtouch 3.x that allowed logged-in users to upload malicious files to a WPtouch installation.

The issue was fixed in 3.4.3 released over the weekend, before the security issue was publicized, though anyone running WPtouch 3.x or WPtouch Pro 3.x should make sure they’re running the latest version of the plugin to be 100% secure.

The issue does not affect WPtouch 1.x or 2.x users, and only affects 3.x users where an attacker has already logged in (so they require an account with your website to exploit).

Currently, all managed GoDaddy and MediaTemple customers running WPtouch have been automatically updated to the latest version, so if you’re using their services you’re already up to date.

We regularly and routinely scan WPtouch for security vulnerabilities, and we appreciated responsible disclosure of this security issue directly to our team. Folks like Sucuri are great at providing us with information to improve and enhance the security of software, and we’re grateful for the work they do.

WordPress always encourages updating to the latest version as a means of making sure you’re protected against security issues, so make sure you’re running the latest versions of WordPress-related software to ensure your security on your website.

July 10, 2014 — By Duane Storey

Help Build A School

Syed Balkhi contacted us recently from WPBeginner and told us about a really great cause that he’s been involved with for a few years – helping to build new schools for children. Last year WPBeginner helped raise enough money to build a school for 12 children in Guatemala, and this year the goal is to build two.

WPtouch is an official gold sponsor for the project, and we’re honoured to be involved and have our donation help a cause such as this. To help raise additional funds, we’ve thrown in five Small Business licenses as well which will be given away as prizes. Many other great companies have also donated prizes as well, and by supporting the cause you’ll have a chance to win some of them as well.

If you’re looking to help out and also have a chance to win some cool prizes, then please head on over to WPBeginner’s Help Build A School post and take a look. You can also visit the donation page direction at Pencils of Promise.

Thanks in advance to everyone who donates or takes time out of their day to read about the cause.

Previous Blog Entries

Added To Cart

Item added to cart successfully. You can either continue browsing and add more themes or extensions, or checkout now.

View Cart Checkout