WordPress Plugin Vulnerability - W3 Total Cache
Incident
Report for Liquid Web - Services
Subscribe to Updates
Identified
Our team will be updating the W3 Total Cache (W3TC) plugin on WordPress sites where the installed version is lower than 2.8.13. This update addresses CVE-2025-9501, a critical security vulnerability.
A fixed version is available in W3TC 2.8.13 and later. To ensure the continued security and stability of your sites, our engineering team will apply this update.
We do not anticipate any downtime during this process.
No action is required on your part. Our team will monitor the update closely to ensure your sites remain fully functional. We appreciate your co-operation as we take this proactive step to protect your sites.
For additional details on the Vulnerability, please refer:
https://wpscan.com/vulnerability/6697a2c9-63ae-42f0-8931-f2e5d67d45ae/
If you encounter any issues after the update please contact our support team through a ticket in your portal or via live chat.
We will provide updates on the progress of the patching.
A fixed version is available in W3TC 2.8.13 and later. To ensure the continued security and stability of your sites, our engineering team will apply this update.
We do not anticipate any downtime during this process.
No action is required on your part. Our team will monitor the update closely to ensure your sites remain fully functional. We appreciate your co-operation as we take this proactive step to protect your sites.
For additional details on the Vulnerability, please refer:
https://wpscan.com/vulnerability/6697a2c9-63ae-42f0-8931-f2e5d67d45ae/
If you encounter any issues after the update please contact our support team through a ticket in your portal or via live chat.
We will provide updates on the progress of the patching.
This incident affects: Cloud VPS Hosting.