Contact Form 7 Version 5.3.2 Patches Critical Vulnerability, Immediate Update Recommended
Contact Form 7 has patched a critical file upload vulnerability in version 5.3.2, released today […]
Tag: security
-
-
Easy WP SMTP 1.4.3 Patches Sensitive Data Disclosure Vulnerability
Easy WP SMTP has patched a vulnerability that allows attackers to capture the password reset […]
-
WooCommerce Patches Vulnerability that Allowed Spam Bots to Create Accounts at Checkout
WooCommerce 4.6.2 was released yesterday with a fix for a vulnerability that allowed account creation […]
-
Loginizer Plugin Gets Forced Security Update for Vulnerabilities Affecting 1 Million Users
WordPress.org has pushed out a forced security update for the Loginizer plugin, which is active […]
-
All in One SEO Pack Plugin Patches XSS Vulnerability
All in One SEO Pack patched an XSS vulnerability this week that was discovered by […]
-
Google Patches Critical Vulnerability in Site Kit Plugin
In late April Wordfence discovered a critical vulnerability in Google’s Site Kit plugin for WordPress […]
-
WordPress 5.2.4 Release Addresses Several Security Issues
The core WordPress team released version 5.2.4 of WordPress on October 14. The release addresses […]
-
Rich Reviews Plugin Discontinued after Vulnerabilities Exploited in the Wild
After tracking exploits of a zero day XSS vulnerability in the Rich Reviews plugin for […]
-
Proposal to Auto-Update Old Versions of WordPress to 4.7 Sparks Heated Debate
WordPress contributors, developers, and community members are currently debating a proposal to would implement a […]
-
WordPress Security Team Discusses Backporting Security Releases to Fewer Versions
The WordPress Security Team is exploring different approaches to backporting security fixes to older versions […]
-
WP Super Cache 1.6.9 Patches Security Issue
There’s a new release of WP Super Cache (1.6.9) available that patches a security issue […]
-
All-in-One WP Migration 7.0 Patches XSS Vulnerability
Those who use the All-in-One WP Migration plugin are encouraged to update to version 7.0 […]
-
WPWeekly Episode 353 – Slack of Boundaries and A Walk to WCEU
In this episode, John James Jacoby and I discuss an article published by Vox on […]
-
WordPress 5.2 Improves the Security of Automatic Updates
WordPress 5.2, released earlier this month, added the first step towards fully secure updates with […]
-
PluginVulnerabilities.com is Protesting WordPress.org Support Forum Moderators by Publishing Zero-Day Vulnerabilities
A security service called Plugin Vulnerabilities, founded by John Grillot, is taking a vigilante approach […]