Multiple plugins used to convert WordPress default plain text emails to HTML format are found to be vulnerable to HTML injection. We have automatically updated plugins in all applicable WordPress customer accounts. Affected versions:
Email Templates <1.3.1
WP HTML Mail – Email Designer <2.9.1
WP Email Template <2.2.11
We have automatically upgraded the Nextgen Gallery plugin in all applicable WordPress customer accounts.
We have automatically upgraded the All-in-One WP Migration plugin in all applicable WordPress customer accounts.
We have automatically upgraded the File Manager plugin in all applicable WordPress customer accounts.
