WPScan Can Now Assign CVE Numbers for WordPress Core, Plugin, and Theme Vulnerabilities
WPScan, a security company that maintains a database of WordPress vulnerabilities, has been officially designated […]
WPScan, a security company that maintains a database of WordPress vulnerabilities, has been officially designated […]
Contact Form 7 has patched a critical file upload vulnerability in version 5.3.2, released today […]
Easy WP SMTP has patched a vulnerability that allows attackers to capture the password reset […]
WooCommerce 4.6.2 was released yesterday with a fix for a vulnerability that allowed account creation […]
WordPress.org has pushed out a forced security update for the Loginizer plugin, which is active […]
All in One SEO Pack patched an XSS vulnerability this week that was discovered by […]
In late April Wordfence discovered a critical vulnerability in Google’s Site Kit plugin for WordPress […]
The core WordPress team released version 5.2.4 of WordPress on October 14. The release addresses […]
After tracking exploits of a zero day XSS vulnerability in the Rich Reviews plugin for […]
WordPress contributors, developers, and community members are currently debating a proposal to would implement a […]
The WordPress Security Team is exploring different approaches to backporting security fixes to older versions […]
There’s a new release of WP Super Cache (1.6.9) available that patches a security issue […]
Those who use the All-in-One WP Migration plugin are encouraged to update to version 7.0 […]
In this episode, John James Jacoby and I discuss an article published by Vox on […]
WordPress 5.2, released earlier this month, added the first step towards fully secure updates with […]