In addition to the regular feature and product patches typically released, there were a few updates of note last month that may be applicable to your site including:
Security-related Patches in October:
- Genesis, a framework in use on some older sites, was updated to patch a stored cross-site scripting (XSS) vulnerability found in versions up to and including 3.6.0. (link)
- TablePress received a patch to plug an Authenticated Stored XSS vulnerability (link)
- And PostSMTP 3.6.1 was released to close an account takeover vulnerability. (link)
Other security patches of note that may affect our Care Plan subscribers included Events Calendar 6.15.10, Simple Cloudflare Turnstile 1.34.0 – 1.35.0, WooCommerce Advanced Shipping Packages 1.2.3, and Gravity Forms 2.9.21.
All vulnerable plugins, including some listed in the overview below, were patched within 24 hours of an update becoming available.
Other updates in October include:
Advanced Custom Fields 6.6.0+, Yoast 26.1 & 26.2, JetPack 15.1, and the behind-the-scenes plugins used to optimize the operation of your site: Hummingbird Pro 3.17.0, Smush Pro 3.22.1, Branda Pro 3.4.26, and Defender 5.6.0
For sites that use it, WooCommerce 10.3.0+ was released along with improvements including a long awaited Cost of Goods Sold feature, product editor improvements, and address autocomplete for checkout blocks.
For more on WooCommerce 10.3.0, please visit:
https://developer.woocommerce.com/2025/09/17/woocommerce-10-2-a-faster-cart-and-more-ways-to-showcase-products/
Please note that this does not include all updates made to your site, nor does it detail every release of any one particular plugin. As always, if you have any questions or would like more specific details about any of the updates applied to your site specifically, please don’t hesitate to let me know!
Ongoing Issues, Updates & Improvements:
Calendaring Improvements: The migration away from Events Calendar and Events Calendar Pro in favor of Sugar Calendar continues as I roll it out to client sites that previously didn’t use The Events Calendar. Though this migration doesn’t affect all sites with a Care Plan, moving away from the more expensive Events Calendar Pro helps maintain lower Care Plan pricing across the board for all our clients.
Important Note: For clients who prefer the Events Calendar, have no need for the Events Calendar Pro features, or who opt to purchase an Events Calendar Pro license on their own will continue to use Events Calendar and will not be migrated.
Divi 5: Elegant Themes has officially released their public beta(s) of Divi 5 and third party plugin support continues to roll out. As previously mentioned, I am continuing to test this major release for the framework driving (most of) your sites and I’ll be keeping an eye on the development as things progress in the months to come. Stay tuned!
Plugin Update Summary for October 2025:
WordPress Core was not updated in October
Security-Related Updates
Defender 5.6/5.6.1
Genesis 3.6.1
Gravity Forms 2.9.21
CookieYes 3.3.5
Redux Framework 4.5.8
Slider Revolution 6.7.38
WPFront User Role Editor 4.2.4
Advanced Ads 2.0.13
Woo Adv Shipping Packages 1.2.3
TablePress 3.2.5
Post SMTP 3.6.1
Events Calendar 6.15.10
Simple CAPTCHA w/Cloudflare Turnstile 1.34.0/1.34.1/1.34.2/1.34.3/1.35.0
hCaptcha for WP 4.18.0
Standard Plugins
Hummingbird Pro 3.17/3.17.1
Smush Pro 3.22.1
Branda Pro 3.4.26
Gravity Forms 2.9.19/2.9.20/2.9.21
GF Square Add On 2.5.0
GP Advanced Calculations 1.1.19
GP File Upload 1.5.8
GF Polls 4.4.0
WP Forms 1.9.8.2
Contact Form 7 6.1.2/6.1.3
Events Calendar 6.15.7-6.15.10
Yoast 26.1/26.1.1 / 26.2
JetPack 15.1
Spellbook 3.0.16
Advanced Custom Fields (ACF) 6.6.0/6.6.1/6.6.2
Secure Custom Fields (SCF)
Post SMTP 3.6.0/3.6.1
TablePress 3.2.4/3.2.5
Publish Press Permissions 4.5.1/4.5.2
Share on Mastodon 0.20.0
Slider Revolution 6.7.38
Strong Testimonials 3.2.17
WP All Export 1.4.13
Advanced Ads 2.0.13
Font Awesome 5.1.3
WPFront User Role Editor 4.2.4
CookieYes 3.3.5/3.3.6
LoginWP 3.0.8.7/3.0.8.8
Modula Gallery 2.12.26
MC4WP 4.10.8
AddToAny Share Buttons 1.8.15
Themes and Related Plugins
Divi Supreme Pro 4.9.97.38
Divi Booster 4.11.1
WPBakery 8.7 / 8.7.1 / 8.7.2
Supreme Maps Pro 1.3.0
Genesis 3.6.1
Redux Framework 4.5.8
WooCommerce-Related
WooCommerce 10.3/10.3.3/10.3.4
Woo Smart Coupons 9.56.0-9.61.0
Flexible Shipping 6.4.1
Flexible Shipping Pro 4.0.7
Woo Shipping 1.8.10/1.8.11
Woo Adv Shipping Packages 1.2.3
Woo Tax 3.2.0
PDF Inv & Packing List 4.8.0
Woo Product Add-Ons 8.1.0
Woo Stripe 10.0.1
WooPayments 10.1.0
Site Kit by Google 1.163.0/1.164.0
Tickera 3.5.6.1
Tickera Bridge 1.6.8
Tickera CSV Export 1.3.3
Export Order Items Pro 2.1.36
FaceBook for WooCommerce 3.5.10/3.5.12
YITH Authorize.net 1.49.0
YITH Dynamic Pricing 4.25.0
YITH Gift Cards 4.29.0/4.29.1
YITH AJAX Filter 5.15.0/5.15.1
YITH Product Slider 1.49.0
YITH Category Accordion 2.24.0
YITH Sequential Ord Numb 1.50.0