Pipdig Updates P3 Plugin after Reports Expose Vendor Backdoors, Built-in Kill Switch, and Malicious DDoS Code
Over the weekend, Pipdig, a small commercial theme company, has been at the center of […]
Tag: security
-
-
WPWeekly Episode 349 – Sandy Edwards and the Kids Event Working Group Initiative
In this episode, John James Jacoby and I are joined by Sandy Edwards. Sandy gave […]
-
WordPress 5.1.1 Patches Critical Vulnerability
WordPress 5.1.1 was released yesterday evening with an important security update for a critical cross-site […]
-
Freemius Patches Severe Vulnerability in Library Used by Popular WordPress Plugins
Freemius, a monetization, analytics, and marketing library for WordPress plugin and theme developers, patched an […]
-
Bootstrap Patches XSS Vulnerability in Versions 4.3.1 and 3.4.1
Bootstrap has released versions 4.3.1 and 3.4.1 to patch an XSS vulnerability (CVE-2019-8331) that was […]
-
WPBrigade Patches Critical Vulnerability in Simple Social Buttons Plugin
WPBrigade, the developers behind the Simple Social Buttons plugin, have patched a critical privilege escalation […]
-
WPML Alleges Former Employee Breached Website and Took Customer Emails
Over the weekend, many WPML customers received an unauthorized email from someone who claimed to […]
-
WPML Website Hacked, Customer Emails Compromised
On Saturday, January 19, WPML customers started reporting having received an email from someone who […]
-
WP GDPR Compliance Plugin Patches Privilege Escalation Vulnerability
At the end of last week, a plugin called WP GDPR Compliance sent out a […]
-
WPWeekly Episode 322 – WP Engine Acquires StudioPress
In this episode, John James Jacoby and I spend the first half of the show […]
-
WPWeekly Episode 320 – Building a Sustainable Web
In this episode, John James Jacoby and I are joined by Jack Lenox, Software Engineer […]
-
WordPress 4.9.5 Squashes 25 Bugs
WordPress 4.9.5 is available for download and is a maintenance and security release. WordPress 4.9.4 […]
-
Let’s Encrypt Wildcard Certificates Are Now Available
In July of last year, Let's Encrypt announced that it would begin issuing Wildcard certificates […]
-
New Plugin Makes WordPress Core Updates More Secure by Requiring Cryptographic Signature Verification
In 2016, WordFence published their findings of a vulnerability that could have compromised the servers […]
-
WordPress 4.9.2 Patches XSS Vulnerability
WordPress 4.9.2 has been released and patches a cross-site scripting vulnerability in the Flash fallback […]