Blog
New in 4.12.6: accessibility and reliability improvements
Version 4.12.6, released yesterday, is a smaller release than 4.12.2, but still worth highlighting. It improves accessibility of generated form fields and makes background sign-up processing more reliable. It also tightens up validation and logging in a few places. More accessible generated fields When you use the field generator in the form editor, the plugin More... Read more →
New in 4.12.2: Campaign Archive block and Mailchimp Site Tracking Pixel
Version 4.12.2, released last week, ships two new features worth highlighting. Both were contributed by Faisal Ahammad, who has been making steady contributions to the plugin over the past few months. Campaign Archive block You can now display an archive of your past Mailchimp email campaigns directly on your WordPress site, using either the new More... Read more →
Why we removed the ability to unsubscribe through sign-up forms
Version 4.12.0, released last week, removes the ability to process unsubscribe requests through Mailchimp for WordPress forms. This is a change we've been considering for a while, and I want to explain the reasoning. A bit of history In version 2.3 back in 2015, we added the ability to handle unsubscribes through the plugin's sign-up More... Read more →
New: GDPR-friendly spam protection with Prosopo
Version 4.9.19, released last week, adds integration with Prosopo — a CAPTCHA solution built specifically with privacy and GDPR compliance in mind. It's the first built-in anti-spam option we've offered since removing the Google reCAPTCHA integration earlier this year. Why Prosopo The reason we removed reCAPTCHA wasn't that CAPTCHAs are useless — it's that reCAPTCHA More... Read more →
Security update: XSS vulnerabilities fixed in version 4.9.17
Version 4.9.17, released last week, fixes two XSS (Cross-Site Scripting) vulnerabilities. Please update as soon as possible. What was fixed Reflected XSS via the {email} tag The {email} dynamic tag — used to display a subscriber's email address in form messages — was not properly escaping HTML characters. A malicious actor could craft a URL More... Read more →
Mailchimp sign-up checkbox now works with the WooCommerce Checkout Block
If you use our WooCommerce checkout integration to show a Mailchimp sign-up checkbox during checkout, you may have noticed it disappear after updating WooCommerce over the past year. Version 4.9.16, released last week, fixes that. What happened WooCommerce introduced a new Checkout Block to replace the classic shortcode-based checkout page. Starting with WooCommerce 8.3, the More... Read more →
Why we removed the built-in Google reCAPTCHA integration
Version 4.9.2, released last week, removes the built-in Google reCAPTCHA integration that we added back in version 4.5.0 in 2019. If you were already using it, it remains enabled for you — but it is no longer available for new installations. Here's why we made this call. reCAPTCHA v3 created more problems than it solved More... Read more →
Security update: CSRF vulnerability fixed in version 4.8.5
On June 1st we released version 4.8.5 of Mailchimp for WordPress, which fixes a CSRF (Cross-Site Request Forgery) vulnerability. If you haven't updated yet, please do so now. What was the issue? CSRF is an attack where a malicious website tricks a logged-in user into unknowingly performing an action on a different site. In this More... Read more →
Version 4.7.5: AMP support and a 40% smaller JavaScript bundle
We just released version 4.7.5 of Mailchimp for WordPress, and it comes with two changes worth a dedicated mention. AMP compatibility Sign-up forms now work correctly on AMP pages, thanks to a contribution from Claudiu Lodromanean. AMP is a framework for building fast-loading web pages, originally developed by Google. AMP pages run in a restricted More... Read more →
User survey 2020
We are constantly monitoring our support tickets for input in trying to determine what we should be working on. Whether that is improving an existing feature already in the plugin, adding a new feature, improving plugin performance, writing better articles for our knowledge base or something else. This method is probably not sufficient though, as More... Read more →