Connect with us
Vulnerabilities in a popular WordPress plugin Fastest Cache could allow an attacker to gain access to credentials and takeover an admin account. The security flaws in the extension,...
A hugely popular GDPR compliance plugin for WordPress contained an authenticated, persistent cross-site scripting (XSS) vulnerability related to the insecure use of PHP’s extract() function, according to security researchers. As...
WordPress has rolled out an update to its core codebase that includes mitigations against three security flaws As well as fixing 61 bugs, WordPress 5.8.1, released yesterday (September...
An information disclosure vulnerability has been patched in Ninja Forms, the form-building plugin for WordPress with more than one million active installations. An authenticated attacker who abuses the flaw could...
A cross-site scripting (XSS) vulnerability in a popular WordPress plugin could allow an attacker to completely take over a website, researchers have warned. The flaw made it possible...
The Pakistan-linked threat group’s campaign uses compromised WordPress sites to deliver the Warzone RAT to manufacturing companies in Taiwan and South Korea. Threat actors are using...
A vulnerability patched recently in the WordPress Download Manager plugin could be abused to execute arbitrary code under specific configurations, the Wordfence team at WordPress security...
WordPress is the world’s most popular content management system, powering around 40% of all websites globally. While the open source technology has helped millions of business owners, bloggers,...
WordPress has extended its Site Health interface for developers, allowing for greater visibility over potential security flaws. Version 5.8 of WordPress core, out today (July 20), allows...
A misconfigured cloud database exposed over 800 million records linked to WordPress users before its owner was notified, according to Website Planet. Security researcher Jeremiah Fowler explained that the...
Recent Comments