Wordfence CLI 2.0.1 Update Adds Free Vulnerability Scanning
Wordfence CLI 2.0.1 introduced free vulnerability scanning this week. The new CLI product was launched […]
Tag: security
-
-
Patchstack Reports 404 Vulnerabilities Affecting 1.6M+ Websites to WordPress.org Plugins Team
After an accumulation of undisclosed and unpatched vulnerabilities in plugins hosted on WordPress.org, Patchstack has […]
-
Ninja Forms Version 3.6.26 Patches Multiple High Severity Security Vulnerabilities
If you use the Ninja Forms plugin and your sites aren’t set to get automatic […]
-
All-In-One Security Plugin Patches Sensitive Data Exposure Vulnerability in Version 5.2.0
All-In-One Security (AIOS), a plugin active on more than a million WordPress sites, was found […]
-
MalCare, Blogvault, and WPRemote Plugins Patch Vulnerabilities Allowing Site Takeover Through Stolen API Credentials
Snicco, a WordPress security services provider, has published an advisory on a vulnerability in the […]
-
Ultimate Member 2.6.7 Patches Privilege Escalation Vulnerability
Authors of the Ultimate Member plugin have released version 2.6.7 with a patch for a […]
-
Hackers Actively Exploiting Unpatched Privilege Escalation Vulnerability in Ultimate Member Plugin
WPScan is reporting a hacking campaign actively exploiting an unpatched vulnerability in the Ultimate Member […]
-
Really Simple SSL Plugin Adds Free Vulnerability Detection
Really Simple SSL, a popular plugin used on more than five million sites for installing […]
-
WooCommerce Stripe Gateway Plugin Patches Security Vulnerability in 7.4.1
Patchstack is reporting an Insecure Direct Object References (IDOR) vulnerability in WooCommerce Stripe Gateway, the […]
-
#79 – Robert Abela on How to Keep Your WordPress Website Secure
On the podcast today we have Robert Abela. Robert is the CEO and founder of MelaPress, formerly known as WP White Security. They make niche WordPress security and admin plugins. He has over 18 years experience in the IT and software industries, and has written numerous web security articles and white papers. We all know…
-
WordPress 6.2.2 Restores Shortcode Support in Block Templates, Fixes Security Issue
WordPress 6.2.2 was released early this morning as a rapid follow-up to 6.2.1, which introduced […]
-
WordPress 6.2.1 Released with Fixes for 5 Security Vulnerabilities
WordPress 6.2.1 was released today. Those with automatic background updates enabled should see a notice […]
-
Essential Addons for Elementor Patches Critical Privilege Escalation Vulnerability
Essential Addons for Elementor, a plugin with more than a million active installs, has patched […]
-
Advanced Custom Fields Plugin Patches Reflected XSS Vulnerability
Advanced Custom Fields (ACF) has patched a reflected XSS vulnerability that affects versions 6.1.5 and below […]
-
WooCommerce Payments Plugin Patches Critical Vulnerability That Would Allow Site Takeover
WooCommerce Payments, a plugin that allows WooCommerce store owners to accept credit and debit card […]