Two zero-day flaws in WordPress plugins used by two hacker groups

    Two cybersecurity companies providing firewall plugins for WordPress sites have detected attacks using a zero-day vulnerability in a popular WordPress…

    WordPress forces a security update for a popular plug-in

    The WordPress security team took a step it rarely uses last week, using a little-known internal capability that allows it…

    Flaws in PHP Everywhere Affect Thousands of WordPress Sites

    Critical Remote Code Execution (RCE) vulnerabilities in a very popular WordPress plugin have just been made public. These RCE flaws…

    WordPress sites attacked via a zero-day in an abandoned plugin

    Owners of WordPress sites using the “Total Donations” plugin are advised to remove the application from their servers to prevent…

    Serious vulnerabilities fixed in the Facebook plugin for WordPress

    Two serious vulnerabilities have just been fixed in the Facebook for WordPress plug-in. Disclosed by the Wordfence Threat Intelligence team…

    90% of hacked CMS are WordPress sites

    About 90% of all hacked content management systems (CMS) that Sucuri investigated and helped fix in 2018 were WordPress sites.…
    Back to top button