We have noticed the Builder Contact addon had security vulnerability allowing hackers to send spam/phishing emails on behalf of the affected sites. The issue was first reported by a few of our members on the support forum and at the same time we were notified by the WordFence team (big thanks to WordFence team for notifying us the concerns and suggestions). We took immediate action to fix all security flaws and released the update. If you are using Builder Contact prior version 1.4.6, it is highly recommended to update to the latest version immediately. If you have the old Builder Contact version installed on the server but not activated, please either delete it or replace it with the latest version (do not leave the compromised version on the server). If your membership has expired and can't update Builder Contact, please contact us. We will offer a 3-month free membership extension so you can update the plugin. We apologize for any inconvenience it may cause.
Important Notice: Builder Contact Security Vulnerability (Action Required)
June 13, 2020 @ 5:12 pm
Please update my membership so I can update Builder Contact
June 13, 2020 @ 6:51 pm
We’ve extended your membership by 3 months. Please update Builder Contact as soon as possible.
June 13, 2020 @ 5:26 pm
Hello. Thank you for letting us know about it
I’m not sure if I’ve used it or not.
Can I have an extension for 3 months to see which plug in to add . I haven’t used really any of the features of my one year membership due to an illness and it’s such a big regret. I feel back on the stage now to continue building my website. I would appreciate if you can give that bonus. I completely understand if you refuse though.
June 13, 2020 @ 6:50 pm
We’ve extended your membership by 3 months. Please update Builder Contact as soon as possible. Again, we apologize for the inconvenience.
July 23, 2020 @ 8:59 am
Hi Nick, can you please tell me where to paste the Recaptcha v3 site key and secret key? I do not understand how it works in my themify shoppe theme. Where to paste and save it?
Thank you in advance,
Susan
June 13, 2020 @ 5:28 pm
June 13, 2020
To whom it may concern at Themify,
I am currently using Themify Shoppe theme ver. 1.9.3 and I think the Themify Builder is already part of the service within and I didn’t need to get the Themify Builder plug-in separately.
Builder Contact addon had been seen in the dashboard list of plugin page and then it got deleted. Ever since contact icon at builder module disappeared and I was trying to try out several contact forms such as Contact Form 7, Jetpack:contact form, Contact Form by WPForms-Drag&Drop Form Builder for WordPress, … without choosing any one at this moment.
I purchased Single Theme for one year. I have a couple of websites for my online business now almost completed and ready for its first time launch (since Oct 2019) with Themify Shoppe theme inspired by Hogan Chua YouTube tutorials. For easement and security of operating my own website using Themify themes, would you please advise on choosing a right contact form for my websites?
Is Builder Contact good addon despite version prior 1.4.6 may be with some security flaws?
Thanks in advance,
Sincerely,
Joo Heon Kwak, dba.
DEARJOOKWAK
https://www.dearjookwak.com
https://my1store2019.dearjookwak.com
June 13, 2020 @ 6:49 pm
If you still have any old version of Builder Contact (before than v1.4.6), please either update it or delete it on your server if you are not using it. The new version is fixed. If you don’t have active membership, let us know and we will offer you a free extension.
June 13, 2020 @ 7:52 pm
My membership has expired. I see you are extended former subscribers’ membership to help them avoid being hacked. Could you do the same for me?
Thanks
June 14, 2020 @ 3:17 am
Your membership has been extended.
June 14, 2020 @ 3:27 pm
so question. if we are using the Themify themes and plugins, when you roll out updates to themify or builder does that update the plugins as well? or do we still have to manually redownload the plugins every so often to make sure they are updated?
June 15, 2020 @ 3:15 am
Only the Builder Contact addon is compromised. If you are using Themify themes/plugins, they are fine. If you are updating Builder Contact, please also update the Themify theme.
June 13, 2020 @ 9:22 pm
Please update my membership so I can update Builder Contact
June 14, 2020 @ 3:16 am
We’ve extended your membership.
June 14, 2020 @ 8:03 am
Hi, how can i update?
June 15, 2020 @ 3:17 am
We’ve extended your membership for 3 months. Please use Themify Updater with your license key to update it: https://themify.me/docs/themify-updater-documentation. If you are using a Themify theme with Builder Contact, please update both.
June 14, 2020 @ 1:32 am
I will also need the extension, please, so I am able to fix this problem.
Thanks,
Rosa
June 14, 2020 @ 3:15 am
You currently have Master Club, so you should be able to update the Builder Contact addon. Use the Themify Updater with your license key to update your Themify themes and plugins: https://themify.me/docs/themify-updater-documentation
June 14, 2020 @ 3:35 am
My membership has expired. Please provide a free extension, as outlined in your email.
June 15, 2020 @ 3:19 am
Done.
June 14, 2020 @ 7:03 am
thanks you for let us know ! i would like to have the extension , thanks in advance!
June 15, 2020 @ 3:19 am
We’ve extended your membership. Please use Themify Updater with your license key to update it: https://themify.me/docs/themify-updater-documentation
June 16, 2020 @ 1:38 pm
Should i have a new temporary license key to activate the plugin themify – updater ? i enter the one i had and said its expired
June 14, 2020 @ 7:10 am
Hy, how do I know I use builder contact?
June 14, 2020 @ 7:14 am
hy and then nothoing changes further on the siite?
June 14, 2020 @ 7:22 am
I succesfully updated to 1.4.6 ; from the zipfile. How do I remove the files (older) as mentioned?
June 15, 2020 @ 3:18 am
How did you update it? Did you use Themify Updater? If you used Themify Updater, the old version shouldn’t remain on the server.
June 16, 2020 @ 5:56 am
yes I used updater so should be good but see my latest: catagories now give an error when product is updated!
June 14, 2020 @ 9:27 am
the latest version on wordpress and your site is 1.4.6
please send the link to the new version
June 15, 2020 @ 3:16 am
If you are using Builder Contact 1.4.6, it is fine (that is the fixed version).
June 14, 2020 @ 6:01 pm
Please could I also have my inactive membership temporarily enabled so I can update the plugin?
June 15, 2020 @ 3:14 am
Done.
June 14, 2020 @ 8:12 pm
The phrasing is confusing me
Is it 1.4.6 and prior that is bad?
Or
Is 1.4.6 ok. It’s everything before that’s bad?
June 15, 2020 @ 3:14 am
Version 1.4.6+ is ok (it is the latest version we fixed). If you are using any version below that, please update it.
June 15, 2020 @ 1:30 am
Could I please have an extension to update the Builder Contact addon. Thanks.
June 15, 2020 @ 3:13 am
Done.
June 15, 2020 @ 4:21 am
Can i have an extension so that i can update the fix?
June 18, 2020 @ 9:32 pm
Done.
June 15, 2020 @ 7:21 am
Hello, I am using themify and it has expired, could you please upgrade my membership.
June 15, 2020 @ 10:53 am
Hi, I have installed Builder Contact v. 1.2.9.
Please, could I have a free extension to update the addon?
Thanks.
June 15, 2020 @ 12:42 pm
Hi,
My membership has expired. Please could it be extended so I can update Builder Contact?
Many thanks,
Lawrence
June 15, 2020 @ 3:40 pm
Please update my builder contact.
June 18, 2020 @ 9:31 pm
We’ve extended your membership.
June 15, 2020 @ 4:15 pm
Hi, I have the Builder Contact on one of my old sites. Pleade could extend my license so I can update?
June 15, 2020 @ 6:42 pm
Hi could I please get the free extension to update the add-on? Many thanks for letting me know.
June 18, 2020 @ 9:30 pm
You currently have active membership with us. You should be able to update Builder Contact with Themify Updater plugin. Please email us if you encounter any issue.
June 16, 2020 @ 5:55 am
Hy, after this update catagories give an error when product is updated! I need an urgent solution!
June 18, 2020 @ 3:59 am
Could you post the details on our support forum or send us more details via https://themify.me/contact? Our support team will assist you with this.
June 16, 2020 @ 10:10 am
Hi,
Could I you please update my membership so I can update Builder Contact.
Thanks
June 16, 2020 @ 3:23 pm
Hi,
Please extend the membership as mentioned.
Thanks
Joe
June 17, 2020 @ 12:27 pm
Hello! Please update my membership so I can update Builder Contact
June 17, 2020 @ 4:31 pm
I have 1.4.1 on several of my sites.
Can I get the extension to update?
I’d be willing to upgrade to the lifetime membership if you can e-mail me the half off promo. I forgot to it a few months back when you had the sale.
Thanks!
June 18, 2020 @ 3:56 am
Could you contact us via https://themify.me/contact
June 18, 2020 @ 4:25 pm
E-mail you. Thanks!
June 18, 2020 @ 1:37 pm
Please update my membership. Thank you.
June 18, 2020 @ 9:26 pm
Done.
June 19, 2020 @ 3:03 pm
Hi
Would the vulnerability be the reason I received random one word emails from my site contact form ?
Also is there a way to see the log of emails sent via the contact builder forms
Thanks for being wonderful I love themify themes
Bruce
June 20, 2020 @ 12:45 am
Hi,
First of all, thanks for your support. The vulnerability allowed hackers to send spam emails using your server. If you are receiving a lot of spams from the Builder Contact, try to enable captcha on Builder Contact module options.
June 26, 2020 @ 2:38 am
How do i requested for the extension on the builder contact change please ?
Thanks
June 29, 2020 @ 2:36 am
Please contact us here: https://themify.me/contact (please specify your username)
June 28, 2020 @ 7:19 am
I am using the older version and my membership is expired could you provide me free membership of builder contact.
Thanks
June 29, 2020 @ 2:58 pm
I have an older version 1.4.3….
Please update my membership so I can update Builder Contact
June 30, 2020 @ 3:04 am
We’ve extended your membership.
June 30, 2020 @ 9:36 am
Thank you!
July 8, 2020 @ 10:14 pm
I have builder contact Version 1.2.9 installed on AmendInitiative.org site. It is full of spam submissions.
1. Do I need to delete plugin?
2. Do I delete spam (77,000 submissions)? If yes, how do I delete/trash all 77,000 in bulk?
3. I have added the ReCaptcha settings just now (were not added before).
4. my contact form just displays error messages when I attempt to test
Please help,
Thanks,
Kevin
July 9, 2020 @ 2:06 am
Hi Kevin,
Sorry to hear about the problem. If you are getting a lot of spam mails in your inbox, it shouldn’t be related to this vulnerability. This vulnerability is another way around, hackers can use use your mail server to send out spam mails to other recipients.
Here are our suggestions:
– Update Builder Contact to the latest version immediately.
– Enable Captcha option in Builder Contact
February 10, 2022 @ 8:27 pm
Yo! Nick! Hello!
I need a help! How i can translate to other language “error messages” from builder contact form?
Where i can find this option, like a “success message” field?
Because when something wrong, i see “invalid email adress” or “please verify captcha” and etc…
February 14, 2022 @ 3:47 am
We can help you with this. Could you post on our support forum (https://themify.me/forum) or contact form: https://themify.me/contact.