Jetpack 9.8 Introduces WordPress Stories Block Alongside Forced Security Update
Jetpack 9.8 was released this week, introducing WordPress Stories as the headline feature. The Story block, […]
Tag: security
-
-
Patchstack Whitepaper: 582 WordPress Security Issues Found in 2020, Over 96% From Third-Party Extensions
Patchstack, which recently rebranded from WebARX, released its 2020 security whitepaper. The report identified a […]
-
Zerodium Temporarily Triples Payout to $300K for WordPress Exploits
Zerodium, one of the most well-known security vulnerability brokers, announced that it is tripling payouts […]
-
WebARX Rebrands To Patchstack, Combines Services To Focus on WordPress Plugin and Theme Security
In 2018, WebARX launched the first version of its security platform and grew to 3,000 […]
-
Elementor Patches XSS Vulnerabilities Affecting 7 Million WordPress Sites
Elementor users who haven’t updated recently will want to get on the latest version 3.1.4 […]
-
Attackers Continue to Exploit Vulnerabilities in The Plus Addons for Elementor Plugin
Last week, security researchers at Seravo and WP Charged reported a critical zero-day vulnerability in […]
-
WPScan Can Now Assign CVE Numbers for WordPress Core, Plugin, and Theme Vulnerabilities
WPScan, a security company that maintains a database of WordPress vulnerabilities, has been officially designated […]
-
Contact Form 7 Version 5.3.2 Patches Critical Vulnerability, Immediate Update Recommended
Contact Form 7 has patched a critical file upload vulnerability in version 5.3.2, released today […]
-
Easy WP SMTP 1.4.3 Patches Sensitive Data Disclosure Vulnerability
Easy WP SMTP has patched a vulnerability that allows attackers to capture the password reset […]
-
WooCommerce Patches Vulnerability that Allowed Spam Bots to Create Accounts at Checkout
WooCommerce 4.6.2 was released yesterday with a fix for a vulnerability that allowed account creation […]
-
Loginizer Plugin Gets Forced Security Update for Vulnerabilities Affecting 1 Million Users
WordPress.org has pushed out a forced security update for the Loginizer plugin, which is active […]
-
All in One SEO Pack Plugin Patches XSS Vulnerability
All in One SEO Pack patched an XSS vulnerability this week that was discovered by […]
-
Google Patches Critical Vulnerability in Site Kit Plugin
In late April Wordfence discovered a critical vulnerability in Google’s Site Kit plugin for WordPress […]
-
WordPress 5.2.4 Release Addresses Several Security Issues
The core WordPress team released version 5.2.4 of WordPress on October 14. The release addresses […]
-
Rich Reviews Plugin Discontinued after Vulnerabilities Exploited in the Wild
After tracking exploits of a zero day XSS vulnerability in the Rich Reviews plugin for […]