Blog

WP-Members 3.5.4.1

Chad Butler · Jun 22, 2025 ·

This version is a security patch release for all previous versions. It patches a potential cross site scripting vulnerability that could be used by users with a contributor or higher role.

I’m not going to detail how it could be used, but this can only be exploited by a user who has a role allowing them to create posts. Additionally, the necessary parameters for exploiting it is in a feature that is not published in the documentation, so it is not anything obvious.

WP-Members 3.5.4

Chad Butler · Jun 9, 2025 ·

This article is provided free. Find out how you can get full access to premium content, including how-to articles and support forums, as well as priority email support and member exclusive plugin extensions..

WP-Members 3.5.4 has been released. This version includes a few minor bug fixes, some new API functions, and some improvements to the WP CLI commands.

Continue Reading →

WP-Members 3.5.3

Chad Butler · May 14, 2025 ·

WP-Members 3.5.3 has been released. This version is primarily a feature update release, but includes a couple of bug fixes and other updates as noted in these release notes.

Continue Reading →

WP-Members User Tracking 1.4.7

Chad Butler · May 8, 2025 ·

WP-Members User Tracking version 1.4.7 has been released. This update is primarily the introduction of some new view screens, with more views being expanded in upcoming releases.

Continue Reading →

WP-Members Security 1.6.2

Chad Butler · May 7, 2025 ·

WP-Members Security 1.6.2 has been released. This is a minor update with some feature elements that didn’t quite make it into the previous two packages. Most of the changes are related to WP CLI commands.

Continue Reading →