WooCommerce Stripe Gateway Plugin Patches Security Vulnerability in 7.4.1
Patchstack is reporting an Insecure Direct Object References (IDOR) vulnerability in WooCommerce Stripe Gateway, the […]
Tag: security
-
-
#79 – Robert Abela on How to Keep Your WordPress Website Secure
On the podcast today we have Robert Abela. Robert is the CEO and founder of MelaPress, formerly known as WP White Security. They make niche WordPress security and admin plugins. He has over 18 years experience in the IT and software industries, and has written numerous web security articles and white papers. We all know…
-
WordPress 6.2.2 Restores Shortcode Support in Block Templates, Fixes Security Issue
WordPress 6.2.2 was released early this morning as a rapid follow-up to 6.2.1, which introduced […]
-
WordPress 6.2.1 Released with Fixes for 5 Security Vulnerabilities
WordPress 6.2.1 was released today. Those with automatic background updates enabled should see a notice […]
-
Essential Addons for Elementor Patches Critical Privilege Escalation Vulnerability
Essential Addons for Elementor, a plugin with more than a million active installs, has patched […]
-
Advanced Custom Fields Plugin Patches Reflected XSS Vulnerability
Advanced Custom Fields (ACF) has patched a reflected XSS vulnerability that affects versions 6.1.5 and below […]
-
WooCommerce Payments Plugin Patches Critical Vulnerability That Would Allow Site Takeover
WooCommerce Payments, a plugin that allows WooCommerce store owners to accept credit and debit card […]
-
Patchstack Tracks 328% More Security Bugs Reported in WordPress Plugins in 2022
Patchstack, a WordPress security maintenance and management tool, has published its “State of WordPress Security” […]
-
All In One SEO Patches Multiple Stored XSS Vulnerabilities in Version 4.3.0
Wordfence has published the details of two stored XSS vulnerabilities the company responsibly disclosed to […]
-
#61 – Robert Rowley on Securing Your WordPress Website
On the podcast today we have Robert Rowley. Robert is Patchstack’s security advocate, where his time is spent interacting with open source communities to share the word about security best practices. Given his background, the podcast today is all about internet security. We start off with a topic which is very much in the news…
-
Linux Backdoor Malware Targets WordPress Sites with Outdated, Vulnerable Themes and Plugins
Security researchers at Doctor Web, a security company focused on threat detection and prevention, have […]
-
WordPress Versions 3.7-4.0 No Longer Get Security Updates
In September, WordPress’ Security Team announced it would be dropping support for versions 3.7 through […]
-
iThemes Patches Vulnerability in BackupBuddy, Wordfence Tracks 5 Million Exploit Attempts
BackupBuddy, a commercial plugin from iThemes that performs scheduled backups with remote storage options, has […]
-
WordPress To Drop Security Updates for Versions 3.7 Through 4.0 by December, 2022
WordPress’ Security Team announced it will be dropping support for versions 3.7 through 4.0 on […]
-
#35 – Akshat Choudhary on the State of WordPress Security
On the podcast today we have Akshat Choudhary. Akshat is the Founder and CEO of BlogVault, MalCare, WP Remote and Airlift. These WordPress plugins allow their customers to build, manage and maintain their WordPress websites. He’s based in Bangalore, India and we begin the podcast talking about the state of the WordPress community there. We…