A message to our valued File Manager community,
We take security very seriously and apologize to our community for any inconvenience or issues that have been caused. We urge users to update to the latest version, immediately since it contains a patch for this vulnerability and will keep you protected.
What Happened to the File Manager Plugin?
On Tuesday, September 1st at 11:50am GMT, we became aware of a vulnerability within that affected users using the free WordPress File Manager plugin versions 6.0 to 6.8 and WordPress File Manager Pro plugin versions 7.6 to 7.8 The File Manager plugin was immediately patched and updated within the hour on September 1st at 12:46pm GMT.
What You Need to do Immediately
Update your File Manager plugin immediately to v6.9 if you are using File Manager Free, or to v8.0 if you are using File Manager Pro. In this latest update, we have implemented further security hardening techniques to ensure that your data remains secure during transfer.
Here is some documentation to assist you with the process.
We also recommend you run a service to clean up the malware from your website. Malware is any software intentionally designed to cause damage to a computer, server, client, or computer network. Install Sucuri Malware Scanner to assist. This plugin will help you scan and remove Malware from your website.
If you have any questions or require support please submit a ticket and we will get back to you in 24 hours or less!