Security Advisory – Vulnerabilities in Pagelines/Platform theme for WordPress

Hello, I just got a bunch of email warnings from WP Engine for sites I have Kriesi themes on. Not sure its specific to Kriesi but the themes seem to be the common denominator. Please see below for communication. I’ve never even heard of Pagelines. Thanks for any insight you can provide.

At WP Engine we are always on the lookout for potential security issues that may affect our customers.

Since we have identified your site, (xxxxxxx), as having a Pagelines product installed, we wanted to bring your attention to an announcement made by the team at Sucuri, which outlines a couple of high risk vulnerabilities that they have recently discovered and you may be affected by. The announcement in its entirety can be found here:
http://blog.sucuri.net/2015/01/security-advisory-vulnerabilities-in-pagelinesplatform-theme-for-wordpress.html

This vulnerability is known to exist in many out of date Pagelines products. The best way to ensure that you are protected is by logging into your WordPress dashboard, and updating any Pagelines product that you may have installed.

There are multiple exploits in the outdated versions which allows a malicious individual to escalate their privileges or execute malicious code on your site.

Due to the severity of this exploit we will need you to update your Pagelines products to the latest versions as soon as possible.

Please make sure to run a backup of your site first; which you can learn how to do here: http://wpengine.com/support/restore/

If you have any questions about updating your theme or performing a backup please feel free to reach out to our Support team at any time!

-WP Engine Security Team