Here you will find all the articles with the tag: Wordpress.
WordPress websites using the Forminator plugin for web forms are extremely vulnerable to uploading and executing malicious files. Japan's Computer Emergency Response Team Coordination Center (JPCERT/CC) is sounding the alarm about this. JPCERT/CC has issued an alert for the critical vulnerabilit... Read more
2 days ago
WordPress owner Automattic has acquired the all-in-one chat platform Beeper. Beeper allows users to chat across networks such as WhatsApp, Facebook, Slack, Instagram, LinkedIn, and more from one app. It is not Automattic's first acquisition of a messaging service. Last October, the company acqui... Read more
9 days ago
Two critical vulnerabilities in WordPress plugins from miniOrange will never receive a patch. More than 10,000 websites use the Malware Scanner plugin to detect attackers. However, the tool itself is exploitable by malicious actors. The vulnerability in Malware Scanner was found by WordPress res... Read more
1 month ago
Hackers have infected more than 3,300 websites with malware in recent weeks, despite the fact that the vulnerability was discovered late last year. The vulnerability is present in outdated versions of the Popup Builder plugin. The cross-site scripting vulnerability CVE-2023-6000 in Popup Builder... Read more
1 month ago
Automattic announced that it is negotiating with OpenAI and Midjourney for an AI deal. With this deal user data from WordPress users, among others, will enter training data for LLMs from these AI companies. WordPress has stated that it will not share data coming from its paying WordPress VIP users.... Read more
2 months ago
The number of vulnerabilities in plugins and themes for WordPress has increased significantly over the past year. There is almost a doubling compared to 2022. That's according to research by WordFence. 4,833 vulnerabilities were identified for the entire WordPress ecosystem in the past year. The... Read more
3 months ago
The WordPress plugin Better Search Replace has a critical vulnerability that hackers are actively exploiting. That's what the security experts at Wordfence Intelligence found. The popular WordPress plugin Better Search Replace has over 1 million installs worldwide. The plugin allows WordPress to... Read more
3 months ago
A popular WordPress plug-in intended to send emails faster has been found to leave 150,000 websites vulnerable to a takeover. The developer of the POST SMTP plugin has acted swiftly, meaning a patch is already available. Wordfence reports that the vulnerability was submitted during a bug bounty ... Read more
3 months ago
A new phishing campaign that aims to install a rogue extension specifically targets administrators of WordPress websites, reports Wordfence. Hackers are allegedly posing as the "WordPress Security Team" in the process. According to Wordfence, a phishing campaign is underway that targets administ... Read more
5 months ago
A plugin to make WordPress sites load faster is vulnerable to an SQL injection attack. WP Fastest Cache is deployed by more than a million websites. The majority of these sites (600,000) are still running a vulnerable version. It's easy to see why WP Fastest Cache is so popular: its creators pro... Read more
5 months ago
