Proposal to Auto-Update Old Versions of WordPress to 4.7 Sparks Heated Debate
WordPress contributors, developers, and community members are currently debating a proposal to would implement a […]
Tag: security
-
-
WordPress Security Team Discusses Backporting Security Releases to Fewer Versions
The WordPress Security Team is exploring different approaches to backporting security fixes to older versions […]
-
WP Super Cache 1.6.9 Patches Security Issue
There’s a new release of WP Super Cache (1.6.9) available that patches a security issue […]
-
All-in-One WP Migration 7.0 Patches XSS Vulnerability
Those who use the All-in-One WP Migration plugin are encouraged to update to version 7.0 […]
-
WPWeekly Episode 353 – Slack of Boundaries and A Walk to WCEU
In this episode, John James Jacoby and I discuss an article published by Vox on […]
-
WordPress 5.2 Improves the Security of Automatic Updates
WordPress 5.2, released earlier this month, added the first step towards fully secure updates with […]
-
PluginVulnerabilities.com is Protesting WordPress.org Support Forum Moderators by Publishing Zero-Day Vulnerabilities
A security service called Plugin Vulnerabilities, founded by John Grillot, is taking a vigilante approach […]
-
Pipdig Updates P3 Plugin after Reports Expose Vendor Backdoors, Built-in Kill Switch, and Malicious DDoS Code
Over the weekend, Pipdig, a small commercial theme company, has been at the center of […]
-
WPWeekly Episode 349 – Sandy Edwards and the Kids Event Working Group Initiative
In this episode, John James Jacoby and I are joined by Sandy Edwards. Sandy gave […]
-
WordPress 5.1.1 Patches Critical Vulnerability
WordPress 5.1.1 was released yesterday evening with an important security update for a critical cross-site […]
-
Freemius Patches Severe Vulnerability in Library Used by Popular WordPress Plugins
Freemius, a monetization, analytics, and marketing library for WordPress plugin and theme developers, patched an […]
-
Bootstrap Patches XSS Vulnerability in Versions 4.3.1 and 3.4.1
Bootstrap has released versions 4.3.1 and 3.4.1 to patch an XSS vulnerability (CVE-2019-8331) that was […]
-
WPBrigade Patches Critical Vulnerability in Simple Social Buttons Plugin
WPBrigade, the developers behind the Simple Social Buttons plugin, have patched a critical privilege escalation […]
-
WPML Alleges Former Employee Breached Website and Took Customer Emails
Over the weekend, many WPML customers received an unauthorized email from someone who claimed to […]
-
WPML Website Hacked, Customer Emails Compromised
On Saturday, January 19, WPML customers started reporting having received an email from someone who […]