User Role Editor Pro version 4.25.1 was published at May, 19th, 2016. It’s mainly bug fix release.

Changes list

Core version: 4.25.3

• Fix: Content View Restrictions module:
  – Compatibility provided with WordPress versions earlier 4.4, which do not send ‘post’ parameter to “get_{$adjacent}_post_where” filter.
  – Conflict was resolved with WPML plugin. It adds ‘p’ parameter to the queries for a single post.Titles of restricted posts were viewable for that reason.
• Fix: Admin menu access module:
  – If the 1st submenu item was blocked, menu item was renamed and lost its submenu with not blocked menu items.
• New: Content Edit Restrictions module: filter ure_restrict_edit_post_type was added. It allows to exclude some post type (you don’t wish to restrict) from this module action.

User Role Editor Pro version 4.25 was published at May 5th, 2016. The main news is that this version allows to set posts/pages and any custom post type restrictions for roles. A lot of bug fixes and enhances were included into this version too. Read a full list of changes for version 4.25: Read more User Role Editor Pro version 4.25 ›

User Role Editor Pro version 4.24.6 was published at April 15, 2016.

Changes list

Core version: 4.25.1

• Fix: Selected role’s capabilities list was returned back to old after click “Update” button. It was showed correctly according to the recent updates just after additional page refresh.
• Update: deprecated function get_current_user_info() call was replaced with wp_get_current_user().

User Role Editor Pro version 4.24.5 was published at April 2nd, 2016. It’s the security update to fix critical vulnerability. Versions affected (free and Pro) 4.24.4 and earlier. This exploit allowed to any registered user to raise his permissions up to administrator level.
It’s strongly recommended to update your copy of User Role Editor Pro to the latest version.

Changes List

Core version: 4.25

• Important security update: Any registered user could get an administrator access. Thanks to John Muncaster for discovering and wisely reporting this vulnerability.
• URE pages title tag was replaced from h2 to h1, for compatibility with other WordPress pages.

User Role Editor Pro version 4.24.4 was published at April, 1st, 2016. This bug fix release contains next changes:

Changes List

• Fix: Content view restrictions module: Access error message was not shown with setting to show it. Post or page was excluded from the list of available content instead.
• Fix: Admin menu access module:
  – ‘user-edit.php’ link was blocked by error with ‘block not selected’ model, which did not allow to edit a selected user.
  – admin menu copy is linked to the action with priority 1000 now, to be executed after Jetpack, which uses priority 998 for some reason.