WARNING: This Plugin Has a Critical Vulnerability!

Today my website was down and my heart skipped a beat when I received an email warning from WordFence that this plugin has a critical vulnerability that allows attackers to delete the entire site.

https://www.wordfence.com/blog/2022/08/high-severity-vulnerability-patched-in-download-manager-plugin/?utm_medium=email&_hsmi=221702271&_hsenc=p2ANqtz-97c08KbOnL5Dy-qhOPE-uBaAvkrz6T3A–JUjmxSVGMPyTyN6jExO0CKYm1cVQPBIEyMxtlHSbkLlb9f-a347qnSk0bA&utm_content=221702271&utm_source=hs_email

I was just about to pay for the premium version of this plugin today, but instead, I had to deactivate and delete it immediately, which likely is hurting my SEO.

In a recent thread, the author of this plugin said they’d be releasing updates. I hope they do this VERY soon as a lot of people are currently at serious risk who run this plugin.

Once it’s fixed, and if it starts getting updated more by the author, I’ll definitely consider reinstalling and paying for premium as the plugin was great.

My team had already built over 1000 internal links using it, so deactivating it will surely have some SEO repercussions, but it’s better than having my WP-Config file wiped out completely.

I hope the author acknowledges this before people’s livelihoods are put more at risk.

The page I need help with: [log in to see the link]