Nexcess Status

Identified: We have successfully applied the W3 Total Cache (W3TC) plugin update to thousands of customer sites where an outdated installation was identified and the environment met the minimum requirements for the upgrade. Our teams are continuing to review the hosting fleet and will apply updates wherever possible.

In most cases, we are able to complete the update for our customers. However, several common blockers have prevented updates on some sites, including:

Outdated PHP versions (older than PHP 7.2.5)

Outdated WordPress installations (earlier than WordPress 5.3)

Restricted or limited server access

Once our update efforts are complete, we will contact customers whose environments contain a vulnerable W3TC installation that we were able to identify but could not be updated automatically, so that they and their teams can take any required remediation steps.

We strongly recommend that all customers review their hosting environments and update the plugin as soon as possible, as a proof-of-concept for the exploit has been publicly released.

Identified: Our team is actively involved in updating the W3 Total Cache (W3TC) plugin to the latest version for all sites running W3TC version 2.8.13 or earlier, as part of the ongoing remediation for CVE-2025-9501.

We are closely monitoring all systems throughout this process to ensure the updates are applied successfully and to verify that there is no customer impact.

Further updates will be shared as progress continues.

Identified: Our team will be updating the W3 Total Cache (W3TC) plugin on WordPress sites where the installed version is lower than 2.8.13. This update addresses CVE-2025-9501, a critical security vulnerability.

A fixed version is available in W3TC 2.8.13 and later. To ensure the continued security and stability of your sites, our engineering team will apply this update.

We do not anticipate any downtime during this process.

No action is required on your part. Our team will monitor the update closely to ensure your sites remain fully functional. We appreciate your co-operation as we take this proactive step to protect your sites.

For additional details on the Vulnerability, please refer: https://wpscan.com/vulnerability/6697a2c9-63ae-42f0-8931-f2e5d67d45ae/

If you encounter any issues after the update please contact our support team through a ticket in your portal or via live chat.

We will provide updates on the progress of the patching.

Investigating: To help reduce system load and prevent unexpected changes to client websites during the Thanksgiving, Black Friday, and Cyber Monday high-traffic period, we have temporarily disabled the Visual Comparison tool on our Managed WordPress and Managed WooCommerce plans. This will temporarily disable the feature that safely manages upgrades for WordPress core, plugins, and themes on your site. We continue to proactively monitor for vulnerabilities related to WordPress and WooCommerce plugins, as well as any other urgent update requirements. If no immediate updates are needed, Visual Comparison will be re-enabled on Tuesday, December 9th.

Our support team is here if you need assistance or have any questions. You can reach us through:

Live Chat via the Customer Portal: https://my.nexcess.net/

Email: [email protected]

We appreciate your understanding and patience as we work to ensure the best possible service during this busy season. Thank you for your continued support.

Internal System Maintenance Reference: [CC-13001]

Investigating: To help reduce system load and prevent unexpected changes to client websites during the Thanksgiving, Black Friday, and Cyber Monday high-traffic period, we have temporarily disabled the Visual Comparison tool on our Managed WordPress and Managed WooCommerce plans. This will temporarily disable the feature that safely manages upgrades for WordPress core, plugins, and themes on your site. We continue to proactively monitor for vulnerabilities related to WordPress and WooCommerce plugins, as well as any other urgent update requirements. If no immediate updates are needed, Visual Comparison will be re-enabled on Tuesday, December 9th.

Our support team is here if you need assistance or have any questions. You can reach us through:

Live Chat via the Customer Portal: https://my.nexcess.net/

Email: [email protected]

We appreciate your understanding and patience as we work to ensure the best possible service during this busy season. Thank you for your continued support.

Internal System Maintenance Reference: [CC-13001]